12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760176117621763176417651766176717681769177017711772177317741775177617771778177917801781178217831784178517861787178817891790179117921793179417951796179717981799180018011802180318041805180618071808180918101811181218131814181518161817181818191820182118221823182418251826182718281829183018311832183318341835183618371838183918401841184218431844184518461847184818491850185118521853185418551856185718581859186018611862186318641865186618671868186918701871187218731874187518761877187818791880188118821883188418851886188718881889189018911892189318941895189618971898189919001901190219031904190519061907190819091910191119121913191419151916191719181919192019211922192319241925192619271928192919301931193219331934193519361937193819391940194119421943194419451946194719481949195019511952195319541955195619571958195919601961196219631964196519661967196819691970197119721973197419751976197719781979198019811982198319841985198619871988198919901991199219931994199519961997199819992000200120022003200420052006200720082009201020112012201320142015201620172018201920202021202220232024202520262027202820292030203120322033203420352036203720382039204020412042204320442045204620472048204920502051205220532054205520562057205820592060206120622063206420652066206720682069207020712072207320742075207620772078207920802081208220832084208520862087208820892090209120922093209420952096209720982099210021012102210321042105210621072108210921102111211221132114211521162117211821192120212121222123212421252126212721282129213021312132213321342135213621372138213921402141214221432144214521462147214821492150215121522153215421552156215721582159216021612162216321642165216621672168216921702171217221732174217521762177217821792180218121822183218421852186218721882189219021912192219321942195219621972198219922002201220222032204220522062207220822092210221122122213221422152216221722182219222022212222222322242225222622272228222922302231223222332234223522362237223822392240224122422243224422452246224722482249225022512252225322542255225622572258225922602261226222632264226522662267226822692270227122722273227422752276227722782279228022812282228322842285228622872288228922902291229222932294229522962297229822992300230123022303230423052306230723082309231023112312231323142315231623172318231923202321232223232324232523262327232823292330233123322333233423352336233723382339234023412342234323442345234623472348234923502351235223532354235523562357235823592360236123622363236423652366236723682369237023712372237323742375237623772378237923802381238223832384238523862387238823892390239123922393239423952396239723982399240024012402240324042405240624072408240924102411241224132414241524162417241824192420242124222423242424252426242724282429243024312432243324342435243624372438243924402441244224432444244524462447244824492450245124522453245424552456245724582459246024612462246324642465246624672468246924702471247224732474247524762477247824792480248124822483248424852486248724882489249024912492249324942495249624972498249925002501250225032504250525062507250825092510251125122513251425152516251725182519252025212522252325242525252625272528252925302531253225332534253525362537253825392540254125422543254425452546254725482549255025512552255325542555255625572558255925602561256225632564256525662567256825692570257125722573257425752576257725782579258025812582258325842585258625872588258925902591259225932594259525962597259825992600260126022603260426052606260726082609261026112612261326142615261626172618261926202621262226232624262526262627262826292630263126322633263426352636263726382639264026412642264326442645264626472648264926502651265226532654265526562657265826592660266126622663266426652666266726682669267026712672267326742675267626772678267926802681268226832684268526862687268826892690269126922693269426952696269726982699270027012702270327042705270627072708270927102711271227132714271527162717271827192720272127222723272427252726272727282729273027312732273327342735273627372738273927402741274227432744274527462747274827492750275127522753275427552756275727582759276027612762276327642765276627672768276927702771277227732774277527762777277827792780278127822783278427852786278727882789279027912792279327942795279627972798279928002801280228032804280528062807280828092810281128122813281428152816281728182819282028212822282328242825282628272828282928302831283228332834283528362837283828392840284128422843284428452846284728482849285028512852285328542855285628572858285928602861286228632864286528662867286828692870287128722873287428752876287728782879288028812882288328842885288628872888288928902891289228932894289528962897289828992900290129022903290429052906290729082909291029112912291329142915291629172918291929202921292229232924292529262927292829292930293129322933293429352936293729382939294029412942294329442945294629472948294929502951295229532954295529562957295829592960296129622963296429652966296729682969297029712972297329742975297629772978297929802981298229832984298529862987298829892990299129922993299429952996299729982999300030013002300330043005300630073008300930103011301230133014301530163017301830193020302130223023302430253026302730283029303030313032303330343035303630373038303930403041304230433044304530463047304830493050305130523053305430553056305730583059306030613062306330643065306630673068306930703071307230733074307530763077307830793080308130823083308430853086308730883089309030913092309330943095309630973098309931003101310231033104310531063107310831093110311131123113311431153116311731183119312031213122312331243125312631273128312931303131313231333134313531363137313831393140314131423143314431453146314731483149315031513152315331543155315631573158315931603161316231633164316531663167316831693170317131723173317431753176317731783179318031813182318331843185318631873188318931903191319231933194319531963197319831993200320132023203320432053206320732083209321032113212321332143215321632173218321932203221322232233224322532263227322832293230323132323233323432353236323732383239324032413242324332443245324632473248324932503251325232533254325532563257325832593260326132623263326432653266326732683269327032713272327332743275327632773278327932803281328232833284328532863287328832893290329132923293329432953296329732983299330033013302330333043305330633073308330933103311331233133314331533163317331833193320332133223323332433253326332733283329333033313332333333343335333633373338333933403341334233433344334533463347334833493350335133523353335433553356335733583359336033613362336333643365336633673368336933703371337233733374337533763377337833793380338133823383338433853386338733883389339033913392339333943395339633973398339934003401340234033404340534063407340834093410341134123413341434153416341734183419342034213422342334243425342634273428342934303431343234333434343534363437343834393440344134423443344434453446344734483449345034513452345334543455345634573458345934603461346234633464346534663467346834693470347134723473347434753476347734783479348034813482348334843485348634873488348934903491349234933494349534963497349834993500350135023503350435053506350735083509351035113512351335143515351635173518351935203521352235233524352535263527352835293530353135323533353435353536353735383539354035413542354335443545354635473548354935503551355235533554355535563557355835593560356135623563356435653566356735683569357035713572357335743575357635773578357935803581358235833584358535863587358835893590359135923593359435953596359735983599360036013602360336043605360636073608360936103611361236133614361536163617361836193620362136223623362436253626362736283629363036313632363336343635363636373638363936403641364236433644364536463647364836493650365136523653365436553656365736583659366036613662366336643665366636673668366936703671367236733674367536763677367836793680368136823683368436853686368736883689369036913692369336943695369636973698369937003701370237033704370537063707370837093710371137123713371437153716371737183719372037213722372337243725372637273728372937303731373237333734373537363737373837393740374137423743374437453746374737483749375037513752375337543755375637573758375937603761376237633764376537663767376837693770377137723773377437753776377737783779378037813782378337843785378637873788378937903791379237933794379537963797379837993800380138023803380438053806380738083809381038113812381338143815381638173818381938203821382238233824382538263827382838293830383138323833383438353836383738383839384038413842384338443845384638473848384938503851385238533854385538563857385838593860386138623863386438653866386738683869387038713872387338743875387638773878387938803881388238833884388538863887388838893890389138923893389438953896389738983899390039013902390339043905390639073908390939103911391239133914391539163917391839193920392139223923392439253926392739283929393039313932393339343935393639373938393939403941394239433944394539463947394839493950395139523953395439553956395739583959396039613962396339643965396639673968396939703971397239733974397539763977397839793980398139823983398439853986398739883989399039913992399339943995399639973998399940004001400240034004400540064007400840094010401140124013401440154016401740184019402040214022402340244025402640274028402940304031403240334034403540364037403840394040404140424043404440454046404740484049405040514052405340544055405640574058405940604061406240634064406540664067406840694070407140724073407440754076407740784079408040814082408340844085408640874088408940904091409240934094409540964097409840994100410141024103410441054106410741084109411041114112411341144115411641174118411941204121412241234124412541264127412841294130413141324133413441354136413741384139414041414142414341444145414641474148414941504151415241534154415541564157415841594160416141624163416441654166416741684169417041714172417341744175417641774178417941804181418241834184418541864187418841894190419141924193419441954196419741984199420042014202420342044205420642074208420942104211421242134214421542164217421842194220422142224223422442254226422742284229423042314232423342344235423642374238423942404241424242434244424542464247424842494250425142524253425442554256425742584259426042614262426342644265426642674268426942704271427242734274427542764277427842794280428142824283428442854286428742884289429042914292429342944295429642974298429943004301430243034304430543064307430843094310431143124313431443154316431743184319432043214322432343244325432643274328432943304331433243334334433543364337433843394340434143424343434443454346434743484349435043514352435343544355435643574358435943604361436243634364436543664367436843694370437143724373437443754376437743784379438043814382438343844385438643874388438943904391439243934394439543964397439843994400 |
- <?php
- class UserManager
- {
-
- const USER_FIELD_TYPE_TEXT = 1;
- const USER_FIELD_TYPE_TEXTAREA = 2;
- const USER_FIELD_TYPE_RADIO = 3;
- const USER_FIELD_TYPE_SELECT = 4;
- const USER_FIELD_TYPE_SELECT_MULTIPLE = 5;
- const USER_FIELD_TYPE_DATE = 6;
- const USER_FIELD_TYPE_DATETIME = 7;
- const USER_FIELD_TYPE_DOUBLE_SELECT = 8;
- const USER_FIELD_TYPE_DIVIDER = 9;
- const USER_FIELD_TYPE_TAG = 10;
- const USER_FIELD_TYPE_TIMEZONE = 11;
- const USER_FIELD_TYPE_SOCIAL_PROFILE = 12;
-
- public function __construct()
- {
- }
-
- public static function create_user(
- $firstName,
- $lastName,
- $status,
- $email,
- $loginName,
- $password,
- $official_code = '',
- $language = '',
- $phone = '',
- $picture_uri = '',
- $auth_source = PLATFORM_AUTH_SOURCE,
- $expiration_date = '0000-00-00 00:00:00',
- $active = 1,
- $hr_dept_id = 0,
- $extra = null,
- $encrypt_method = '',
- $send_mail = false
- ) {
- global $_user, $_configuration;
- $original_password = $password;
- $access_url_id = 1;
- if (api_get_multiple_access_url()) {
- $access_url_id = api_get_current_access_url_id();
- }
- if (is_array($_configuration[$access_url_id]) &&
- isset($_configuration[$access_url_id]['hosting_limit_users']) &&
- $_configuration[$access_url_id]['hosting_limit_users'] > 0) {
- $num = self::get_number_of_users();
- if ($num >= $_configuration[$access_url_id]['hosting_limit_users']) {
- return api_set_failure('portal users limit reached');
- }
- }
- if ($status === 1 &&
- is_array($_configuration[$access_url_id]) &&
- isset($_configuration[$access_url_id]['hosting_limit_teachers']) &&
- $_configuration[$access_url_id]['hosting_limit_teachers'] > 0
- ) {
- $num = self::get_number_of_users(1);
- if ($num >= $_configuration[$access_url_id]['hosting_limit_teachers']) {
- return api_set_failure('portal teachers limit reached');
- }
- }
- $firstName = Security::remove_XSS($firstName);
- $lastName = Security::remove_XSS($lastName);
- $loginName = Security::remove_XSS($loginName);
- $phone = Security::remove_XSS($phone);
-
- $table_user = Database::get_main_table(TABLE_MAIN_USER);
-
- $languages = api_get_languages();
- $language = strtolower($language);
- if (!in_array($language, $languages['folder'])) {
- $language = api_get_setting('platformLanguage');
- }
- if ($_user['user_id']) {
- $creator_id = intval($_user['user_id']);
- } else {
- $creator_id = '';
- }
-
- if (!self::is_username_available($loginName)) {
- return api_set_failure('login-pass already taken');
- }
-
- if (empty($encrypt_method)) {
- $password = api_get_encrypted_password($password);
- } else {
- if ($_configuration['password_encryption'] === $encrypt_method) {
- if ($encrypt_method == 'md5' && !preg_match('/^[A-Fa-f0-9]{32}$/', $password)) {
- return api_set_failure('encrypt_method invalid');
- } else if ($encrypt_method == 'sha1' && !preg_match('/^[A-Fa-f0-9]{40}$/', $password)) {
- return api_set_failure('encrypt_method invalid');
- }
- } else {
- return api_set_failure('encrypt_method invalid');
- }
- }
-
- $current_date = date('Y-m-d H:i:s', time());
- $sql = "INSERT INTO $table_user
- SET lastname = '".Database::escape_string(trim($lastName))."',
- firstname = '".Database::escape_string(trim($firstName))."',
- username = '".Database::escape_string(trim($loginName))."',
- status = '".Database::escape_string($status)."',
- password = '".Database::escape_string($password)."',
- email = '".Database::escape_string($email)."',
- official_code = '".Database::escape_string($official_code)."',
- picture_uri = '".Database::escape_string($picture_uri)."',
- creator_id = '".Database::escape_string($creator_id)."',
- auth_source = '".Database::escape_string($auth_source)."',
- phone = '".Database::escape_string($phone)."',
- language = '".Database::escape_string($language)."',
- registration_date = '".$current_date."',
- expiration_date = '".Database::escape_string($expiration_date)."',
- hr_dept_id = '".Database::escape_string($hr_dept_id)."',
- active = '".Database::escape_string($active)."'";
- $result = Database::query($sql);
- if ($result) {
-
- $return = Database::insert_id();
- if (api_get_multiple_access_url()) {
- UrlManager::add_user_to_url($return, api_get_current_access_url_id());
- } else {
-
- UrlManager::add_user_to_url($return, 1);
- }
- if (!empty($email) && $send_mail) {
- $recipient_name = api_get_person_name($firstName, $lastName, null, PERSON_NAME_EMAIL_ADDRESS);
- $emailsubject = '['.api_get_setting('siteName').'] '.get_lang('YourReg').' '.api_get_setting('siteName');
- $sender_name = api_get_person_name(api_get_setting('administratorName'), api_get_setting('administratorSurname'), null, PERSON_NAME_EMAIL_ADDRESS);
- $email_admin = api_get_setting('emailAdministrator');
- if (api_is_multiple_url_enabled()) {
- $access_url_id = api_get_current_access_url_id();
- if ($access_url_id != -1) {
- $url = api_get_access_url($access_url_id);
- $emailbody = get_lang('Dear')." ".stripslashes(api_get_person_name($firstName, $lastName)).",\n\n".get_lang('YouAreReg')." ".api_get_setting('siteName')." ".get_lang('WithTheFollowingSettings')."\n\n".get_lang('Username')." : ".$loginName."\n".get_lang('Pass')." : ".stripslashes($original_password)."\n\n".get_lang('Address')." ".api_get_setting('siteName')." ".get_lang('Is')." : ".$url['url']."\n\n".get_lang('Problem')."\n\n".get_lang('Formula').",\n\n".api_get_person_name(api_get_setting('administratorName'), api_get_setting('administratorSurname'))."\n".get_lang('Manager')." ".api_get_setting('siteName')."\nT. ".api_get_setting('administratorTelephone')."\n".get_lang('Email')." : ".api_get_setting('emailAdministrator');
- }
- } else {
- $emailbody = get_lang('Dear')." ".stripslashes(api_get_person_name($firstName, $lastName)).",\n\n".get_lang('YouAreReg')." ".api_get_setting('siteName')." ".get_lang('WithTheFollowingSettings')."\n\n".get_lang('Username')." : ".$loginName."\n".get_lang('Pass')." : ".stripslashes($original_password)."\n\n".get_lang('Address')." ".api_get_setting('siteName')." ".get_lang('Is')." : ".$_configuration['root_web']."\n\n".get_lang('Problem')."\n\n".get_lang('Formula').",\n\n".api_get_person_name(api_get_setting('administratorName'), api_get_setting('administratorSurname'))."\n".get_lang('Manager')." ".api_get_setting('siteName')."\nT. ".api_get_setting('administratorTelephone')."\n".get_lang('Email')." : ".api_get_setting('emailAdministrator');
- }
-
- if (EventsMail::check_if_using_class('user_registration')) {
- $values["about_user"] = $return;
- $values["password"] = $original_password;
- $values["send_to"] = array($return);
- $values["prior_lang"] = null;
- EventsDispatcher::events('user_registration', $values);
- } else {
- api_mail_html($recipient_name, $email, $emailsubject, $emailbody, $sender_name, $email_admin);
- }
-
- }
- event_system(LOG_USER_CREATE, LOG_USER_ID, $return);
- } else {
- return api_set_failure('error inserting in Database');
- }
- if (is_array($extra) && count($extra) > 0) {
- $res = true;
- foreach ($extra as $fname => $fvalue) {
- $res = $res && self::update_extra_field_value($return, $fname, $fvalue);
- }
- }
- self::update_extra_field_value($return, 'already_logged_in', 'false');
- return $return;
- }
-
- public static function can_delete_user($user_id)
- {
- global $_configuration;
- if (isset($_configuration['deny_delete_users']) &&
- $_configuration['deny_delete_users'] == true
- ) {
- return false;
- }
- $table_course_user = Database :: get_main_table(TABLE_MAIN_COURSE_USER);
- if ($user_id != strval(intval($user_id)))
- return false;
- if ($user_id === false)
- return false;
- $sql = "SELECT * FROM $table_course_user
- WHERE status = '1' AND user_id = '".$user_id."'";
- $res = Database::query($sql);
- while ($course = Database::fetch_object($res)) {
- $sql = "SELECT user_id FROM $table_course_user
- WHERE status='1' AND course_code ='".Database::escape_string($course->course_code)."'";
- $res2 = Database::query($sql);
- if (Database::num_rows($res2) == 1) {
- return false;
- }
- }
- return true;
- }
-
- public static function delete_user($user_id)
- {
- if ($user_id != strval(intval($user_id))) {
- return false;
- }
- if ($user_id === false) {
- return false;
- }
- if (!self::can_delete_user($user_id)) {
- return false;
- }
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
- $usergroup_rel_user = Database :: get_main_table(TABLE_USERGROUP_REL_USER);
- $table_course_user = Database :: get_main_table(TABLE_MAIN_COURSE_USER);
- $table_course = Database :: get_main_table(TABLE_MAIN_COURSE);
- $table_session = Database :: get_main_table(TABLE_MAIN_SESSION);
- $table_admin = Database :: get_main_table(TABLE_MAIN_ADMIN);
- $table_session_user = Database :: get_main_table(TABLE_MAIN_SESSION_USER);
- $table_session_course_user = Database :: get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
- $table_group = Database :: get_course_table(TABLE_GROUP_USER);
- $table_work = Database :: get_course_table(TABLE_STUDENT_PUBLICATION);
-
- $sql = "SELECT c.id FROM $table_course c, $table_course_user cu
- WHERE
- cu.user_id = '".$user_id."' AND
- relation_type<>".COURSE_RELATION_TYPE_RRHH." AND
- c.code = cu.course_code";
- $res = Database::query($sql);
- while ($course = Database::fetch_object($res)) {
- $sql = "DELETE FROM $table_group
- WHERE c_id = {$course->id} AND user_id = $user_id";
- Database::query($sql);
- }
-
-
-
-
- $sql = "DELETE FROM $usergroup_rel_user WHERE user_id = '".$user_id."'";
- Database::query($sql);
-
- $sql = "DELETE FROM $table_course_user WHERE user_id = '".$user_id."'";
- Database::query($sql);
-
- $sql = "DELETE FROM $table_session_course_user WHERE id_user = '".$user_id."'";
- Database::query($sql);
-
- $currentUserId = api_get_user_id();
- $sql = "UPDATE $table_session SET id_coach = $currentUserId WHERE id_coach = '".$user_id."'";
- Database::query($sql);
- $sql = "UPDATE $table_session SET id_coach = $currentUserId WHERE session_admin_id = '".$user_id."'";
- Database::query($sql);
-
- $sql = "DELETE FROM $table_session_user WHERE id_user = '".$user_id."'";
- Database::query($sql);
-
-
- $user_info = api_get_user_info($user_id);
- if (strlen($user_info['picture_uri']) > 0) {
- $img_path = api_get_path(SYS_CODE_PATH).'upload/users/'.$user_id.'/'.$user_info['picture_uri'];
- if (file_exists($img_path))
- unlink($img_path);
- }
-
- $course_cat_table = Database::get_user_personal_table(TABLE_USER_COURSE_CATEGORY);
- $sql = "DELETE FROM $course_cat_table WHERE user_id = '".$user_id."'";
- Database::query($sql);
-
- $sql = "DELETE FROM $table_user WHERE user_id = '".$user_id."'";
- Database::query($sql);
-
- $sql = "DELETE FROM $table_admin WHERE user_id = '".$user_id."'";
- Database::query($sql);
-
- $agenda_table = Database :: get_user_personal_table(TABLE_PERSONAL_AGENDA);
- $sql = "DELETE FROM $agenda_table WHERE user = '".$user_id."'";
- Database::query($sql);
- $gradebook_results_table = Database :: get_main_table(TABLE_MAIN_GRADEBOOK_RESULT);
- $sql = 'DELETE FROM '.$gradebook_results_table.' WHERE user_id = '.$user_id;
- Database::query($sql);
- $t_ufv = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $sqlv = "DELETE FROM $t_ufv WHERE user_id = $user_id";
- Database::query($sqlv);
- require_once api_get_path(LIBRARY_PATH).'urlmanager.lib.php';
- if (api_get_multiple_access_url()) {
- $url_id = api_get_current_access_url_id();
- UrlManager::delete_url_rel_user($user_id, $url_id);
- } else {
-
- UrlManager::delete_url_rel_user($user_id, 1);
- }
- if (api_get_setting('allow_social_tool') == 'true') {
- require_once api_get_path(LIBRARY_PATH).'group_portal_manager.lib.php';
-
- $group_list = GroupPortalManager::get_groups_by_user($user_id);
- if (!empty($group_list)) {
- foreach ($group_list as $group_id => $data) {
- GroupPortalManager::delete_user_rel_group($user_id, $group_id);
- }
- }
-
- SocialManager::remove_user_rel_user($user_id, true);
- }
-
- survey_manager::delete_all_survey_invitations_by_user($user_id);
-
- $sql = "DELETE FROM $table_work WHERE user_id = $user_id AND c_id <> 0";
- Database::query($sql);
-
- $user_id_manager = api_get_user_id();
- event_system(LOG_USER_DELETE, LOG_USER_ID, $user_id, api_get_utc_datetime(), $user_id_manager, null, $user_info);
- event_system(LOG_USER_DELETE, LOG_USER_OBJECT, $user_info, api_get_utc_datetime(), $user_id_manager, null, $user_info);
- return true;
- }
-
- static function delete_users($ids = array())
- {
- $result = false;
- $ids = is_array($ids) ? $ids : func_get_args();
- if (!is_array($ids) or count($ids) == 0) { return false; }
- $ids = array_map('intval', $ids);
- foreach ($ids as $id) {
- if (empty($id) or $id < 1) { continue; }
- $deleted = self::delete_user($id);
- $result = $deleted || $result;
- }
- return $result;
- }
-
- static function deactivate_users($ids = array())
- {
- if (empty($ids)) {
- return false;
- }
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
- $ids = is_array($ids) ? $ids : func_get_args();
- $ids = array_map('intval', $ids);
- $ids = implode(',', $ids);
- $sql = "UPDATE $table_user SET active = 0 WHERE user_id IN ($ids)";
- $r = Database::query($sql);
- if ($r !== false) {
- event_system(LOG_USER_DISABLE,LOG_USER_ID,$ids);
- }
- return $r;
- }
-
- static function activate_users($ids = array())
- {
- if (empty($ids)) {
- return false;
- }
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
- $ids = is_array($ids) ? $ids : func_get_args();
- $ids = array_map('intval', $ids);
- $ids = implode(',', $ids);
- $sql = "UPDATE $table_user SET active = 1 WHERE user_id IN ($ids)";
- $r = Database::query($sql);
- if ($r !== false) {
- event_system(LOG_USER_ENABLE,LOG_USER_ID,$ids);
- }
- return $r;
- }
-
- public static function update_openid($user_id, $openid)
- {
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
- if ($user_id != strval(intval($user_id)))
- return false;
- if ($user_id === false)
- return false;
- $sql = "UPDATE $table_user SET
- openid='".Database::escape_string($openid)."'";
- $sql .= " WHERE user_id='$user_id'";
- return Database::query($sql);
- }
-
- public static function update_user(
- $user_id,
- $firstname,
- $lastname,
- $username,
- $password = null,
- $auth_source = null,
- $email,
- $status,
- $official_code,
- $phone,
- $picture_uri,
- $expiration_date,
- $active,
- $creator_id = null,
- $hr_dept_id = 0,
- $extra = null,
- $language = 'english',
- $encrypt_method = '',
- $send_email = false,
- $reset_password = 0
- ) {
- global $_configuration;
- $original_password = $password;
- if (empty($user_id)) { return false; }
- $user_info = api_get_user_info($user_id, false, true);
- if ($reset_password == 0) {
- $password = null;
- $auth_source = $user_info['auth_source'];
- } elseif ($reset_password == 1) {
- $original_password = $password = api_generate_password();
- $auth_source = PLATFORM_AUTH_SOURCE;
- } elseif ($reset_password == 2) {
- $password = $password;
- $auth_source = PLATFORM_AUTH_SOURCE;
- } elseif ($reset_password == 3) {
- $password = $password;
- $auth_source = $auth_source;
- }
- if ($user_id != strval(intval($user_id)))
- return false;
- if ($user_id === false)
- return false;
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
-
- $languages = api_get_languages();
- if (!in_array($language, $languages['folder'])) {
- $language = api_get_setting('platformLanguage');
- }
- $change_active = 0;
- if ($user_info['active'] != $active) {
- $change_active = 1;
- }
- $sql = "UPDATE $table_user SET
- lastname='".Database::escape_string($lastname)."',
- firstname='".Database::escape_string($firstname)."',
- username='".Database::escape_string($username)."',
- language='".Database::escape_string($language)."',";
- if (!is_null($password)) {
- if ($encrypt_method == '') {
- $password = api_get_encrypted_password($password);
- } else {
- if ($_configuration['password_encryption'] === $encrypt_method) {
- if ($encrypt_method == 'md5' && !preg_match('/^[A-Fa-f0-9]{32}$/', $password)) {
- return api_set_failure('encrypt_method invalid');
- } else if ($encrypt_method == 'sha1' && !preg_match('/^[A-Fa-f0-9]{40}$/', $password)) {
- return api_set_failure('encrypt_method invalid');
- }
- } else {
- return api_set_failure('encrypt_method invalid');
- }
- }
- $sql .= " password='".Database::escape_string($password)."',";
- }
- if (!is_null($auth_source)) {
- $sql .= " auth_source='".Database::escape_string($auth_source)."',";
- }
- $sql .= "
- email='".Database::escape_string($email)."',
- status='".Database::escape_string($status)."',
- official_code='".Database::escape_string($official_code)."',
- phone='".Database::escape_string($phone)."',
- picture_uri='".Database::escape_string($picture_uri)."',
- expiration_date='".Database::escape_string($expiration_date)."',
- active='".Database::escape_string($active)."',
- hr_dept_id=".intval($hr_dept_id);
- if (!is_null($creator_id)) {
- $sql .= ", creator_id='".Database::escape_string($creator_id)."'";
- }
- $sql .= " WHERE user_id='$user_id'";
- $return = Database::query($sql);
- if ($change_active == 1 && $return) {
- if ($active == 1) {
- $event_title = LOG_USER_ENABLE;
- } else {
- $event_title = LOG_USER_DISABLE;
- }
- event_system($event_title, LOG_USER_ID, $user_id);
- }
- if (is_array($extra) && count($extra) > 0) {
- $res = true;
- foreach ($extra as $fname => $fvalue) {
- $res = $res && self::update_extra_field_value($user_id, $fname, $fvalue);
- }
- }
- if (!empty($email) && $send_email) {
- $recipient_name = api_get_person_name($firstname, $lastname, null, PERSON_NAME_EMAIL_ADDRESS);
- $emailsubject = '['.api_get_setting('siteName').'] '.get_lang('YourReg').' '.api_get_setting('siteName');
- $sender_name = api_get_person_name(api_get_setting('administratorName'), api_get_setting('administratorSurname'), null, PERSON_NAME_EMAIL_ADDRESS);
- $email_admin = api_get_setting('emailAdministrator');
- if (api_is_multiple_url_enabled()) {
- $access_url_id = api_get_current_access_url_id();
- if ($access_url_id != -1) {
- $url = api_get_access_url($access_url_id);
- $emailbody = get_lang('Dear')." ".stripslashes(api_get_person_name($firstname, $lastname)).",\n\n".get_lang('YouAreReg')." ".api_get_setting('siteName')." ".get_lang('WithTheFollowingSettings')."\n\n".get_lang('Username')." : ".$username.(($reset_password > 0) ? "\n".get_lang('Pass')." : ".stripslashes($original_password) : "")."\n\n".get_lang('Address')." ".api_get_setting('siteName')." ".get_lang('Is')." : ".$url['url']."\n\n".get_lang('Problem')."\n\n".get_lang('Formula').",\n\n".api_get_person_name(api_get_setting('administratorName'), api_get_setting('administratorSurname'))."\n".get_lang('Manager')." ".api_get_setting('siteName')."\nT. ".api_get_setting('administratorTelephone')."\n".get_lang('Email')." : ".api_get_setting('emailAdministrator');
- }
- } else {
- $emailbody = get_lang('Dear')." ".stripslashes(api_get_person_name($firstname, $lastname)).",\n\n".get_lang('YouAreReg')." ".api_get_setting('siteName')." ".get_lang('WithTheFollowingSettings')."\n\n".get_lang('Username')." : ".$username.(($reset_password > 0) ? "\n".get_lang('Pass')." : ".stripslashes($original_password) : "")."\n\n".get_lang('Address')." ".api_get_setting('siteName')." ".get_lang('Is')." : ".$_configuration['root_web']."\n\n".get_lang('Problem')."\n\n".get_lang('Formula').",\n\n".api_get_person_name(api_get_setting('administratorName'), api_get_setting('administratorSurname'))."\n".get_lang('Manager')." ".api_get_setting('siteName')."\nT. ".api_get_setting('administratorTelephone')."\n".get_lang('Email')." : ".api_get_setting('emailAdministrator');
- }
- @api_mail_html($recipient_name, $email, $emailsubject, $emailbody, $sender_name, $email_admin);
- }
- return $return;
- }
-
- private static function change_active_state($user_id, $active)
- {
- if (strval(intval($user_id)) != $user_id) {
- return false;
- }
- if ($user_id < 1) {
- return false;
- }
- $user_id = intval($user_id);
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
- $sql = "UPDATE $table_user SET active = '$active' WHERE user_id = '$user_id';";
- $r = Database::query($sql);
- $ev = LOG_USER_DISABLE;
- if ($active == 1) {
- $ev = LOG_USER_ENABLE;
- }
- if ($r !== false) {
- event_system($ev,LOG_USER_ID,$user_id);
- }
- return $r;
- }
-
- public static function disable($user_id)
- {
- self::change_active_state($user_id, 0);
- }
-
- public static function enable($user_id)
- {
- self::change_active_state($user_id, 1);
- }
-
- public static function get_user_id_from_original_id($original_user_id_value, $original_user_id_name)
- {
- $t_uf = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $t_ufv = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $sql = "SELECT user_id
- FROM $t_uf uf
- INNER JOIN $t_ufv ufv
- ON ufv.field_id=uf.id
- WHERE
- field_variable='$original_user_id_name' AND
- field_value='$original_user_id_value';";
- $res = Database::query($sql);
- $row = Database::fetch_object($res);
- if ($row) {
- return $row->user_id;
- } else {
- return 0;
- }
- }
-
- public static function is_username_available($username)
- {
- if (empty($username)) {
- return false;
- }
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
- $sql = "SELECT username FROM $table_user
- WHERE username = '".Database::escape_string($username)."'";
- $res = Database::query($sql);
- return Database::num_rows($res) == 0;
- }
-
- public static function create_username($firstname, $lastname, $language = null, $encoding = null)
- {
- if (is_null($encoding)) {
- $encoding = api_get_system_encoding();
- }
- if (is_null($language)) {
- $language = api_get_interface_language();
- }
- $firstname = api_substr(preg_replace(USERNAME_PURIFIER, '', api_transliterate($firstname, '', $encoding)), 0, 1);
-
- $pos = api_strpos($lastname, ' ');
- if ($pos !== false) {
- $lastname = api_substr($lastname, 0, $pos);
- }
- $lastname = preg_replace(USERNAME_PURIFIER, '', api_transliterate($lastname, '', $encoding));
-
- $username = $firstname.$lastname;
- if (empty($username)) {
- $username = 'user';
- }
- return strtolower(substr($username, 0, USERNAME_MAX_LENGTH - 3));
- }
-
- public static function create_unique_username($firstname, $lastname = null, $language = null, $encoding = null)
- {
- if (is_null($lastname)) {
-
-
-
- $username = strtolower(preg_replace(USERNAME_PURIFIER, '', api_transliterate($firstname, '', $encoding)));
- } else {
- $username = self::create_username($firstname, $lastname, $language, $encoding);
- }
- if (!self::is_username_available($username)) {
- $i = 2;
- $temp_username = substr($username, 0, USERNAME_MAX_LENGTH - strlen((string) $i)).$i;
- while (!self::is_username_available($temp_username)) {
- $i++;
- $temp_username = substr($username, 0, USERNAME_MAX_LENGTH - strlen((string) $i)).$i;
- }
- $username = $temp_username;
- }
- return $username;
- }
-
- public static function purify_username($username, $strict = false, $encoding = null)
- {
- if ($strict) {
-
-
-
- $toreturn = api_get_setting('login_is_email') == 'true' ? substr(preg_replace(USERNAME_PURIFIER_MAIL, '', api_transliterate($username, '', $encoding)), 0, USERNAME_MAX_LENGTH) : substr(preg_replace(USERNAME_PURIFIER, '', api_transliterate($username, '', $encoding)), 0, USERNAME_MAX_LENGTH);
- return $toreturn;
- }
-
-
- return substr(preg_replace(USERNAME_PURIFIER_SHALLOW, '', $username), 0, USERNAME_MAX_LENGTH);
- }
-
- public static function is_user_id_valid($user_id)
- {
- $user_id = (int) $user_id;
- $table_user = Database :: get_main_table(TABLE_MAIN_USER);
- $sql = "SELECT user_id FROM $table_user WHERE user_id = '".$user_id."'";
- $res = Database::query($sql);
- $num_rows = Database::num_rows($res);
- if ($num_rows == 0) {
- return false;
- } else {
- return true;
- }
- }
-
- public static function is_username_valid($username, $encoding = null)
- {
- return !empty($username) && $username == self::purify_username($username, true);
- }
-
- public static function is_username_empty($username)
- {
- return (strlen(self::purify_username($username, false)) == 0);
- }
-
- public static function is_username_too_long($username)
- {
- return (strlen($username) > USERNAME_MAX_LENGTH);
- }
-
- public static function get_user_list_by_ids($ids = array(), $active = null)
- {
- if (empty($ids)) {
- return array();
- }
- $ids = is_array($ids) ? $ids : array($ids);
- $ids = array_map('intval', $ids);
- $ids = implode(',', $ids);
- $tbl_user = Database::get_main_table(TABLE_MAIN_USER);
- $sql = "SELECT * FROM $tbl_user WHERE user_id IN ($ids)";
- if (!is_null($active)) {
- $sql .= ' AND active='.($active ? '1' : '0');
- }
- $rs = Database::query($sql);
- $result = array();
- while ($row = Database::fetch_array($rs)) {
- $result[] = $row;
- }
- return $result;
- }
-
- public static function get_user_list($conditions = array(), $order_by = array(), $limit_from = false, $limit_to = false)
- {
- $user_table = Database :: get_main_table(TABLE_MAIN_USER);
- $return_array = array();
- $sql_query = "SELECT * FROM $user_table";
- if (count($conditions) > 0) {
- $sql_query .= ' WHERE ';
- foreach ($conditions as $field => $value) {
- $field = Database::escape_string($field);
- $value = Database::escape_string($value);
- $sql_query .= "$field = '$value'";
- }
- }
- if (count($order_by) > 0) {
- $sql_query .= ' ORDER BY '.Database::escape_string(implode(',', $order_by));
- }
- if (is_numeric($limit_from) && is_numeric($limit_from)) {
- $limit_from = intval($limit_from);
- $limit_to = intval($limit_to);
- $sql_query .= " LIMIT $limit_from, $limit_to";
- }
- $sql_result = Database::query($sql_query);
- while ($result = Database::fetch_array($sql_result)) {
- $return_array[] = $result;
- }
- return $return_array;
- }
-
- public static function get_user_list_like($conditions = array(), $order_by = array(), $simple_like = false, $condition = 'AND')
- {
- $user_table = Database :: get_main_table(TABLE_MAIN_USER);
- $return_array = array();
- $sql_query = "SELECT * FROM $user_table";
- if (count($conditions) > 0) {
- $sql_query .= ' WHERE ';
- $temp_conditions = array();
- foreach ($conditions as $field => $value) {
- $field = Database::escape_string($field);
- $value = Database::escape_string($value);
- if ($simple_like) {
- $temp_conditions[] = $field." LIKE '$value%'";
- } else {
- $temp_conditions[] = $field.' LIKE \'%'.$value.'%\'';
- }
- }
- if (!empty($temp_conditions)) {
- $sql_query .= implode(' '.$condition.' ', $temp_conditions);
- }
- }
- if (count($order_by) > 0) {
- $sql_query .= ' ORDER BY '.Database::escape_string(implode(',', $order_by));
- }
- $sql_result = Database::query($sql_query);
- while ($result = Database::fetch_array($sql_result)) {
- $return_array[] = $result;
- }
- return $return_array;
- }
-
- public static function get_user_info($username)
- {
- $user_table = Database :: get_main_table(TABLE_MAIN_USER);
- $username = Database::escape_string($username);
- $sql = "SELECT * FROM $user_table WHERE username='".$username."'";
- $res = Database::query($sql);
- if (Database::num_rows($res) > 0) {
- return Database::fetch_array($res);
- }
- return false;
- }
-
- public static function get_user_info_by_id($user_id, $user_fields = false)
- {
- $user_id = intval($user_id);
- $user_table = Database :: get_main_table(TABLE_MAIN_USER);
- $sql = "SELECT * FROM $user_table WHERE user_id=".$user_id;
- $res = Database::query($sql);
- if (Database::num_rows($res) > 0) {
- $user = Database::fetch_array($res);
- $t_uf = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $t_ufv = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $sqlf = "SELECT * FROM $t_uf ORDER BY field_order";
- $resf = Database::query($sqlf);
- if (Database::num_rows($resf) > 0) {
- while ($rowf = Database::fetch_array($resf)) {
- $sqlv = "SELECT * FROM $t_ufv WHERE field_id = ".$rowf['id']." AND user_id = ".$user['user_id']." ORDER BY id DESC";
- $resv = Database::query($sqlv);
- if (Database::num_rows($resv) > 0) {
-
- $rowv = Database::fetch_array($resv);
- $user['extra'][$rowf['field_variable']] = $rowv['field_value'];
- } else {
- $user['extra'][$rowf['field_variable']] = '';
- }
- }
- }
- return $user;
- }
- return false;
- }
-
-
-
- public static function get_teacher_list($course_id, $sel_teacher = '')
- {
- $user_course_table = Database :: get_main_table(TABLE_MAIN_COURSE_USER);
- $user_table = Database :: get_main_table(TABLE_MAIN_USER);
- $course_id = Database::escape_string($course_id);
- $sql = "SELECT * FROM $user_table a, $user_course_table b
- WHERE a.user_id=b.user_id AND b.status=1 AND b.course_code='$course_id'";
- $sql_result = Database::query($sql);
- echo "<select name=\"author\">";
- while ($result = Database::fetch_array($sql_result)) {
- if ($sel_teacher == $result['user_id'])
- $selected = "selected";
- echo "\n<option value=\"".$result['user_id']."\" $selected>".$result['firstname']."</option>";
- }
- echo "</select>";
- }
-
- public static function get_user_picture_path_by_id($id, $type = 'none', $preview = false, $anonymous = false)
- {
- switch ($type) {
- case 'system':
- $base = api_get_path(SYS_CODE_PATH);
- break;
- case 'rel':
- $base = api_get_path(REL_CODE_PATH);
- break;
- case 'web':
- $base = api_get_path(WEB_CODE_PATH);
- break;
- case 'none':
- default:
- $base = '';
- }
- if (empty($id) || empty($type)) {
- return $anonymous ? array('dir' => $base.'img/', 'file' => 'unknown.jpg') : array('dir' => '', 'file' => '');
- }
- $user_id = intval($id);
- $user_table = Database :: get_main_table(TABLE_MAIN_USER);
- $sql = "SELECT picture_uri FROM $user_table WHERE user_id=".$user_id;
- $res = Database::query($sql);
- if (!Database::num_rows($res)) {
- return $anonymous ? array('dir' => $base.'img/', 'file' => 'unknown.jpg') : array('dir' => '', 'file' => '');
- }
- $user = Database::fetch_array($res);
- $picture_filename = trim($user['picture_uri']);
- if (api_get_setting('split_users_upload_directory') === 'true') {
- if (!empty($picture_filename) or $preview) {
- $dir = $base.'upload/users/'.substr((string) $user_id, 0, 1).'/'.$user_id.'/';
- } else {
- $dir = $base.'upload/users/'.$user_id.'/';
- }
- } else {
- $dir = $base.'upload/users/'.$user_id.'/';
- }
- if (empty($picture_filename) && $anonymous) {
- return array('dir' => $base.'img/', 'file' => 'unknown.jpg');
- }
- return array('dir' => $dir, 'file' => $picture_filename);
- }
-
- public static function update_user_picture($user_id, $file = null, $source_file = null)
- {
- if (empty($user_id)) {
- return false;
- }
- $delete = empty($file);
- if (empty($source_file)) {
- $source_file = $file;
- }
-
- require_once api_get_path(CONFIGURATION_PATH).'profile.conf.php';
-
- $path_info = self::get_user_picture_path_by_id($user_id, 'system', true);
- $path = $path_info['dir'];
-
- if (!file_exists($path)) {
- @mkdir($path, api_get_permissions_for_new_directories(), true);
- }
-
- $old_file = $path_info['file'];
-
- if (!empty($old_file)) {
- if (KEEP_THE_OLD_IMAGE_AFTER_CHANGE) {
- $prefix = 'saved_'.date('Y_m_d_H_i_s').'_'.uniqid('').'_';
- @rename($path.'small_'.$old_file, $path.$prefix.'small_'.$old_file);
- @rename($path.'medium_'.$old_file, $path.$prefix.'medium_'.$old_file);
- @rename($path.'big_'.$old_file, $path.$prefix.'big_'.$old_file);
- @rename($path.$old_file, $path.$prefix.$old_file);
- } else {
- @unlink($path.'small_'.$old_file);
- @unlink($path.'medium_'.$old_file);
- @unlink($path.'big_'.$old_file);
- @unlink($path.$old_file);
- }
- }
-
- if ($delete) {
- return '';
- }
-
- $allowed_types = array('jpg', 'jpeg', 'png', 'gif');
- $file = str_replace('\\', '/', $file);
- $filename = (($pos = strrpos($file, '/')) !== false) ? substr($file, $pos + 1) : $file;
- $extension = strtolower(substr(strrchr($filename, '.'), 1));
- if (!in_array($extension, $allowed_types)) {
- return false;
- }
-
- if (KEEP_THE_NAME_WHEN_CHANGE_IMAGE && !empty($old_file)) {
- $old_extension = strtolower(substr(strrchr($old_file, '.'), 1));
- $filename = in_array($old_extension, $allowed_types) ? substr($old_file, 0, -strlen($old_extension)) : $old_file;
- $filename = (substr($filename, -1) == '.') ? $filename.$extension : $filename.'.'.$extension;
- } else {
- $filename = replace_dangerous_char($filename);
- if (PREFIX_IMAGE_FILENAME_WITH_UID) {
- $filename = uniqid('').'_'.$filename;
- }
-
-
-
- $filename = $user_id.'_'.$filename;
- }
-
- $small = self::resize_picture($source_file, 22);
- $medium = self::resize_picture($source_file, 85);
- $normal = self::resize_picture($source_file, 200);
- $big = new Image($source_file);
- $ok = $small && $small->send_image($path.'small_'.$filename) &&
- $medium && $medium->send_image($path.'medium_'.$filename) &&
- $normal && $normal->send_image($path.$filename) &&
- $big && $big->send_image($path.'big_'.$filename);
- return $ok ? $filename : false;
- }
-
- public static function delete_user_picture($user_id)
- {
- return self::update_user_picture($user_id);
- }
-
- public static function build_production_list($user_id, $force = false, $showdelete = false)
- {
- if (!$force && !empty($_POST['remove_production'])) {
- return true;
- }
- $productions = self::get_user_productions($user_id);
- if (empty($productions)) {
- return false;
- }
- $production_path = self::get_user_picture_path_by_id($user_id, 'web', true);
- $production_dir = $production_path['dir'].$user_id.'/';
- $del_image = api_get_path(WEB_CODE_PATH).'img/delete.gif';
- $del_text = get_lang('Delete');
- $production_list = '';
- if (count($productions) > 0) {
- $production_list = '<ul id="productions">';
- foreach ($productions as $file) {
- $production_list .= '<li><a href="'.$production_dir.urlencode($file).'" target="_blank">'.htmlentities($file).'</a>';
- if ($showdelete) {
- $production_list .= '<input type="image" name="remove_production['.urlencode($file).']" src="'.$del_image.'" alt="'.$del_text.'" title="'.$del_text.' '.htmlentities($file).'" onclick="javascript: return confirmation(\''.htmlentities($file).'\');" /></li>';
- }
- }
- $production_list .= '</ul>';
- }
- return $production_list;
- }
-
- public static function get_user_productions($user_id)
- {
- $production_path = self::get_user_picture_path_by_id($user_id, 'system', true);
- $production_repository = $production_path['dir'].$user_id.'/';
- $productions = array();
- if (is_dir($production_repository)) {
- $handle = opendir($production_repository);
- while ($file = readdir($handle)) {
- if ($file == '.' || $file == '..' || $file == '.htaccess' || is_dir($production_repository.$file)) {
- continue;
- }
- if (preg_match('/('.$user_id.'|[0-9a-f]{13}|saved)_.+\.(png|jpg|jpeg|gif)$/i', $file)) {
-
- continue;
- }
- $productions[] = $file;
- }
- }
- return $productions;
- }
-
- public static function remove_user_production($user_id, $production)
- {
- $production_path = self::get_user_picture_path_by_id($user_id, 'system', true);
- $production_file = $production_path['dir'].$user_id.'/'.$production;
- if (is_file($production_file)) {
- unlink($production_file);
- return true;
- }
- return false;
- }
-
- public static function update_extra_field($fid, $columns)
- {
-
- $t_uf = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $fid = Database::escape_string($fid);
- $sqluf = "UPDATE $t_uf SET ";
- $known_fields = array(
- 'id',
- 'field_variable',
- 'field_type',
- 'field_display_text',
- 'field_default_value',
- 'field_order',
- 'field_visible',
- 'field_changeable',
- 'field_filter'
- );
- $safecolumns = array();
- foreach ($columns as $index => $newval) {
- if (in_array($index, $known_fields)) {
- $safecolumns[$index] = Database::escape_string($newval);
- $sqluf .= $index." = '".$safecolumns[$index]."', ";
- }
- }
- $time = time();
- $sqluf .= " tms = FROM_UNIXTIME($time) WHERE id='$fid'";
- $resuf = Database::query($sqluf);
- return $resuf;
- }
-
- public static function update_extra_field_value($user_id, $fname, $fvalue = '')
- {
-
- $t_uf = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $t_ufo = Database::get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
- $t_ufv = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $fname = Database::escape_string($fname);
- if ($user_id != strval(intval($user_id)))
- return false;
- if ($user_id === false)
- return false;
- $fvalues = '';
-
- if (is_array($fvalue)) {
- foreach ($fvalue as $val) {
- $fvalues .= Database::escape_string($val).';';
- }
- if (!empty($fvalues)) {
- $fvalues = substr($fvalues, 0, -1);
- }
- } else {
- $fvalues = Database::escape_string($fvalue);
- }
- $sqluf = "SELECT * FROM $t_uf WHERE field_variable='$fname'";
- $resuf = Database::query($sqluf);
- if (Database::num_rows($resuf) == 1) {
-
-
- $rowuf = Database::fetch_array($resuf);
- switch ($rowuf['field_type']) {
- case self::USER_FIELD_TYPE_TAG :
-
- UserManager::process_tags(explode(';', $fvalues), $user_id, $rowuf['id']);
- return true;
- break;
- case self::USER_FIELD_TYPE_RADIO:
- case self::USER_FIELD_TYPE_SELECT:
- case self::USER_FIELD_TYPE_SELECT_MULTIPLE:
- $sqluo = "SELECT * FROM $t_ufo WHERE field_id = ".$rowuf['id'];
- $resuo = Database::query($sqluo);
- $values = explode(';', $fvalues);
- if (Database::num_rows($resuo) > 0) {
- $check = false;
- while ($rowuo = Database::fetch_array($resuo)) {
- if (in_array($rowuo['option_value'], $values)) {
- $check = true;
- break;
- }
- }
- if (!$check) {
- return false;
- }
- } else {
- return false;
- }
- break;
- case 1:
- case 2:
- default:
- break;
- }
- $tms = time();
- $sqlufv = "SELECT * FROM $t_ufv WHERE user_id = $user_id AND field_id = ".$rowuf['id']." ORDER BY id";
- $resufv = Database::query($sqlufv);
- $n = Database::num_rows($resufv);
- if ($n > 1) {
-
- while ($rowufv = Database::fetch_array($resufv)) {
- if ($n > 1) {
- $sqld = "DELETE FROM $t_ufv WHERE id = ".$rowufv['id'];
- Database::query($sqld);
- $n--;
- }
- $rowufv = Database::fetch_array($resufv);
- if ($rowufv['field_value'] != $fvalues) {
- $sqlu = "UPDATE $t_ufv SET field_value = '$fvalues', tms = FROM_UNIXTIME($tms) WHERE id = ".$rowufv['id'];
- $resu = Database::query($sqlu);
- return($resu ? true : false);
- }
- return true;
- }
- } elseif ($n == 1) {
-
- $rowufv = Database::fetch_array($resufv);
- if ($rowufv['field_value'] != $fvalues) {
-
- if ($fvalues == '') {
- $sql_query = "DELETE FROM $t_ufv WHERE id = ".$rowufv['id'].";";
- } else {
-
- $sql_query = "UPDATE $t_ufv SET field_value = '$fvalues', tms = FROM_UNIXTIME($tms) WHERE id = ".$rowufv['id'];
- }
- $resu = Database::query($sql_query);
- return($resu ? true : false);
- }
- return true;
- } else {
- $sqli = "INSERT INTO $t_ufv (user_id,field_id,field_value,tms) ".
- "VALUES ($user_id,".$rowuf['id'].",'$fvalues',FROM_UNIXTIME($tms))";
- $resi = Database::query($sqli);
- return($resi ? true : false);
- }
- } else {
- return false;
- }
- }
-
- public static function get_extra_fields($from = 0, $number_of_items = 0, $column = 5, $direction = 'ASC', $all_visibility = true, $field_filter = null)
- {
- $fields = array();
- $t_uf = Database :: get_main_table(TABLE_MAIN_USER_FIELD);
- $t_ufo = Database :: get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
- $columns = array('id', 'field_variable', 'field_type', 'field_display_text', 'field_default_value', 'field_order', 'field_filter', 'tms');
- $column = intval($column);
- $sort_direction = '';
- if (in_array(strtoupper($direction), array('ASC', 'DESC'))) {
- $sort_direction = strtoupper($direction);
- }
- $sqlf = "SELECT * FROM $t_uf WHERE 1 = 1 ";
- if (!$all_visibility) {
- $sqlf .= " AND field_visible = 1 ";
- }
- if (!is_null($field_filter)) {
- $field_filter = intval($field_filter);
- $sqlf .= " AND field_filter = $field_filter ";
- }
- $sqlf .= " ORDER BY ".$columns[$column]." $sort_direction ";
- if ($number_of_items != 0) {
- $sqlf .= " LIMIT ".Database::escape_string($from).','.Database::escape_string($number_of_items);
- }
- $resf = Database::query($sqlf);
- if (Database::num_rows($resf) > 0) {
- while ($rowf = Database::fetch_array($resf)) {
- $fields[$rowf['id']] = array(
- 0 => $rowf['id'],
- 1 => $rowf['field_variable'],
- 2 => $rowf['field_type'],
-
-
-
- 3 => (empty($rowf['field_display_text']) ? '' : $rowf['field_display_text']),
- 4 => $rowf['field_default_value'],
- 5 => $rowf['field_order'],
- 6 => $rowf['field_visible'],
- 7 => $rowf['field_changeable'],
- 8 => $rowf['field_filter'],
- 9 => array()
- );
- $sqlo = "SELECT * FROM $t_ufo WHERE field_id = ".$rowf['id']." ORDER BY option_order ASC";
- $reso = Database::query($sqlo);
- if (Database::num_rows($reso) > 0) {
- while ($rowo = Database::fetch_array($reso)) {
- $fields[$rowf['id']][9][$rowo['id']] = array(
- 0 => $rowo['id'],
- 1 => $rowo['option_value'],
-
- 2 => (empty($rowo['option_display_text']) ? '' : $rowo['option_display_text']),
- 3 => $rowo['option_order']
- );
- }
- }
- }
- }
- return $fields;
- }
-
- public static function get_extra_field_options($field_name)
- {
- $t_uf = Database :: get_main_table(TABLE_MAIN_USER_FIELD);
- $t_ufo = Database :: get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
- $sql = 'SELECT options.*
- FROM '.$t_ufo.' options
- INNER JOIN '.$t_uf.' fields
- ON fields.id = options.field_id
- AND fields.field_variable="'.Database::escape_string($field_name).'"';
- $rs = Database::query($sql);
- return Database::store_result($rs);
- }
-
- public static function get_number_of_extra_fields($all_visibility = true)
- {
- $t_uf = Database :: get_main_table(TABLE_MAIN_USER_FIELD);
- $sqlf = "SELECT * FROM $t_uf ";
- if (!$all_visibility) {
- $sqlf .= " WHERE field_visible = 1 ";
- }
- $sqlf .= " ORDER BY field_order";
- $resf = Database::query($sqlf);
- return Database::num_rows($resf);
- }
-
- public static function create_extra_field($fieldvarname, $fieldtype, $fieldtitle, $fielddefault, $fieldoptions = '')
- {
-
- $table_field = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $table_field_options = Database::get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
-
- if (self::is_extra_field_available($fieldvarname)) {
- return api_set_failure('login-pass already taken');
- }
- $sql = "SELECT MAX(field_order) FROM $table_field";
- $res = Database::query($sql);
- $order = 0;
- if (Database::num_rows($res) > 0) {
- $row = Database::fetch_array($res);
- $order = $row[0] + 1;
- }
- $time = time();
- $sql = "INSERT INTO $table_field
- SET field_type = '".Database::escape_string($fieldtype)."',
- field_variable = '".Database::escape_string($fieldvarname)."',
- field_display_text = '".Database::escape_string($fieldtitle)."',
- field_default_value = '".Database::escape_string($fielddefault)."',
- field_order = '$order',
- tms = FROM_UNIXTIME($time)";
- $result = Database::query($sql);
- if ($result) {
-
- $return = Database::insert_id();
- event_system(LOG_USER_FIELD_CREATE, LOG_USER_FIELD_VARIABLE, Database::escape_string($fieldvarname));
- } else {
-
- return false;
- }
- if (!empty($fieldoptions) && in_array($fieldtype, array(self::USER_FIELD_TYPE_RADIO, self::USER_FIELD_TYPE_SELECT, self::USER_FIELD_TYPE_SELECT_MULTIPLE, self::USER_FIELD_TYPE_DOUBLE_SELECT))) {
- if ($fieldtype == self::USER_FIELD_TYPE_DOUBLE_SELECT) {
- $twolist = explode('|', $fieldoptions);
- $counter = 0;
- foreach ($twolist as $individual_list) {
- $splitted_individual_list = explode(';', $individual_list);
- foreach ($splitted_individual_list as $individual_list_option) {
-
- if ($counter == 0) {
- $list[] = $individual_list_option;
- } else {
- $list[] = str_repeat('*', $counter).$individual_list_option;
- }
- }
- $counter++;
- }
- } else {
- $list = explode(';', $fieldoptions);
- }
- foreach ($list as $option) {
- $option = Database::escape_string($option);
- $sql = "SELECT * FROM $table_field_options WHERE field_id = $return AND option_value = '".$option."'";
- $res = Database::query($sql);
- if (Database::num_rows($res) > 0) {
-
- } else {
- $sql = "SELECT MAX(option_order) FROM $table_field_options WHERE field_id = $return";
- $res = Database::query($sql);
- $max = 1;
- if (Database::num_rows($res) > 0) {
- $row = Database::fetch_array($res);
- $max = $row[0] + 1;
- }
- $time = time();
- $sql = "INSERT INTO $table_field_options (field_id,option_value,option_display_text,option_order,tms)
- VALUES ($return,'$option','$option',$max,FROM_UNIXTIME($time))";
- $res = Database::query($sql);
- if ($res === false) {
- $return = false;
- }
- }
- }
- }
- return $return;
- }
-
- public static function save_extra_field_changes($fieldid, $fieldvarname, $fieldtype, $fieldtitle, $fielddefault, $fieldoptions = '')
- {
-
- $table_field = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $table_field_options = Database::get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
- $table_field_options_values = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
-
- $time = time();
- $sql = "UPDATE $table_field
- SET field_type = '".Database::escape_string($fieldtype)."',
- field_variable = '".Database::escape_string($fieldvarname)."',
- field_display_text = '".Database::escape_string($fieldtitle)."',
- field_default_value = '".Database::escape_string($fielddefault)."',
- tms = FROM_UNIXTIME($time)
- WHERE id = '".Database::escape_string($fieldid)."'";
- $result = Database::query($sql);
-
- if ($fieldtype == self::USER_FIELD_TYPE_DOUBLE_SELECT) {
- $twolist = explode('|', $fieldoptions);
- $counter = 0;
- foreach ($twolist as $individual_list) {
- $splitted_individual_list = explode(';', $individual_list);
- foreach ($splitted_individual_list as $individual_list_option) {
-
- if ($counter == 0) {
- $list[] = trim($individual_list_option);
- } else {
- $list[] = str_repeat('*', $counter).trim($individual_list_option);
- }
- }
- $counter++;
- }
- } else {
- $templist = explode(';', $fieldoptions);
- $list = array_map('trim', $templist);
- }
-
- $sql = "SELECT * FROM $table_field_options WHERE option_value NOT IN ('".implode("','", $list)."') AND field_id = '".Database::escape_string($fieldid)."'";
- $result = Database::query($sql);
- $return['deleted_options'] = 0;
- while ($row = Database::fetch_array($result)) {
-
- $sql_delete_option = "DELETE FROM $table_field_options WHERE id='".Database::escape_string($row['id'])."'";
- Database::query($sql_delete_option);
- $return['deleted_options']++;
-
- $sql_delete_option_value = "DELETE FROM $table_field_options_values
- WHERE field_id = '".Database::escape_string($fieldid)."' AND field_value = '".Database::escape_string($row['option_value'])."'";
- Database::query($sql_delete_option_value);
- $return['deleted_option_values'] = $return['deleted_option_values'] + Database::affected_rows();
- }
-
- $sql = "SELECT * FROM $table_field_options WHERE field_id = '".Database::escape_string($fieldid)."'";
- $result = Database::query($sql);
- while ($row = Database::fetch_array($result)) {
-
- if (in_array(trim($row['option_display_text']), $list)) {
- $key = array_search(trim($row['option_display_text']), $list);
- unset($list[$key]);
- }
- }
-
- foreach ($list as $key => $option) {
- $sql = "SELECT MAX(option_order) FROM $table_field_options WHERE field_id = '".Database::escape_string($fieldid)."'";
- $res = Database::query($sql);
- $max = 1;
- if (Database::num_rows($res) > 0) {
- $row = Database::fetch_array($res);
- $max = $row[0] + 1;
- }
- $time = time();
- $sql = "INSERT INTO $table_field_options (field_id,option_value,option_display_text,option_order,tms)
- VALUES ('".Database::escape_string($fieldid)."','".Database::escape_string($option)."','".Database::escape_string($option)."',$max,FROM_UNIXTIME($time))";
- $result = Database::query($sql);
- }
- return true;
- }
-
- public static function is_extra_field_available($fieldname)
- {
- $t_uf = Database :: get_main_table(TABLE_MAIN_USER_FIELD);
- $sql = "SELECT * FROM $t_uf WHERE field_variable = '".Database::escape_string($fieldname)."'";
- $res = Database::query($sql);
- return Database::num_rows($res) > 0;
- }
-
- public static function get_extra_user_data($user_id, $prefix = false, $all_visibility = true, $splitmultiple = false, $field_filter = null)
- {
-
- if (empty($user_id)) {
- $user_id = 0;
- } else {
- if ($user_id != strval(intval($user_id)))
- return array();
- }
- $extra_data = array();
- $t_uf = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $t_ufv = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $user_id = Database::escape_string($user_id);
- $sql = "SELECT f.id as id, f.field_variable as fvar, f.field_type as type FROM $t_uf f ";
- $filter_cond = '';
- if (!$all_visibility) {
- if (isset($field_filter)) {
- $field_filter = intval($field_filter);
- $filter_cond .= " AND field_filter = $field_filter ";
- }
- $sql .= " WHERE f.field_visible = 1 $filter_cond ";
- } else {
- if (isset($field_filter)) {
- $field_filter = intval($field_filter);
- $sql .= " WHERE field_filter = $field_filter ";
- }
- }
- $sql .= " ORDER BY f.field_order";
- $res = Database::query($sql);
- if (Database::num_rows($res) > 0) {
- while ($row = Database::fetch_array($res)) {
- if ($row['type'] == self::USER_FIELD_TYPE_TAG) {
- $tags = self::get_user_tags_to_string($user_id, $row['id'], false);
- $extra_data['extra_'.$row['fvar']] = $tags;
- } else {
- $sqlu = "SELECT field_value as fval FROM $t_ufv WHERE field_id=".$row['id']." AND user_id = ".$user_id;
- $resu = Database::query($sqlu);
- $fval = '';
-
- $sql_df = "SELECT field_default_value as fval_df ".
- " FROM $t_uf ".
- " WHERE id=".$row['id'];
- $res_df = Database::query($sql_df);
- if (Database::num_rows($resu) > 0) {
- $rowu = Database::fetch_array($resu);
- $fval = $rowu['fval'];
- if ($row['type'] == self::USER_FIELD_TYPE_SELECT_MULTIPLE) {
- $fval = explode(';', $rowu['fval']);
- }
- } else {
- $row_df = Database::fetch_array($res_df);
- $fval = $row_df['fval_df'];
- }
-
- if ($prefix) {
- if ($row['type'] == self::USER_FIELD_TYPE_RADIO) {
- $extra_data['extra_'.$row['fvar']]['extra_'.$row['fvar']] = $fval;
- } else {
- $extra_data['extra_'.$row['fvar']] = $fval;
- }
- } else {
- if ($row['type'] == self::USER_FIELD_TYPE_RADIO) {
- $extra_data['extra_'.$row['fvar']]['extra_'.$row['fvar']] = $fval;
- } else {
- $extra_data[$row['fvar']] = $fval;
- }
- }
- }
- }
- }
- return $extra_data;
- }
-
- public static function get_extra_user_data_by_field($user_id, $field_variable, $prefix = false, $all_visibility = true, $splitmultiple = false)
- {
-
- if (empty($user_id)) {
- $user_id = 0;
- } else {
- if ($user_id != strval(intval($user_id)))
- return array();
- }
- $extra_data = array();
- $t_uf = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $t_ufv = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $user_id = Database::escape_string($user_id);
- $sql = "SELECT f.id as id, f.field_variable as fvar, f.field_type as type FROM $t_uf f ";
- $sql .= " WHERE f.field_variable = '$field_variable' ";
- if (!$all_visibility) {
- $sql .= " AND f.field_visible = 1 ";
- }
- $sql .= " ORDER BY f.field_order";
- $res = Database::query($sql);
- if (Database::num_rows($res) > 0) {
- while ($row = Database::fetch_array($res)) {
- $sqlu = "SELECT field_value as fval ".
- " FROM $t_ufv ".
- " WHERE field_id=".$row['id']."".
- " AND user_id=".$user_id;
- $resu = Database::query($sqlu);
- $fval = '';
- if (Database::num_rows($resu) > 0) {
- $rowu = Database::fetch_array($resu);
- $fval = $rowu['fval'];
- if ($row['type'] == self::USER_FIELD_TYPE_SELECT_MULTIPLE) {
- $fval = explode(';', $rowu['fval']);
- }
- }
- if ($prefix) {
- $extra_data['extra_'.$row['fvar']] = $fval;
- } else {
- $extra_data[$row['fvar']] = $fval;
- }
- }
- }
- return $extra_data;
- }
-
- public static function get_extra_field_information_by_name($field_variable, $fuzzy = false)
- {
-
- $table_field = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $table_field_options = Database::get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
-
- $sql = "SELECT * FROM $table_field WHERE field_variable='".Database::escape_string($field_variable)."'";
- $result = Database::query($sql);
- $return = Database::fetch_array($result);
-
- $sql = "SELECT * FROM $table_field_options WHERE field_id='".Database::escape_string($return['id'])."' ORDER BY option_order ASC";
- $result = Database::query($sql);
- while ($row = Database::fetch_array($result)) {
- $return['options'][$row['id']] = $row;
- }
- return $return;
- }
- public static function get_all_extra_field_by_type($field_type)
- {
-
- $table_field = Database::get_main_table(TABLE_MAIN_USER_FIELD);
-
- $sql = "SELECT * FROM $table_field WHERE field_type='".Database::escape_string($field_type)."'";
- $result = Database::query($sql);
- $return = array();
- while ($row = Database::fetch_array($result)) {
- $return[] = $row['id'];
- }
- return $return;
- }
-
- public static function get_extra_field_information($field_id)
- {
-
- $table_field = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $table_field_options = Database::get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
-
- $sql = "SELECT * FROM $table_field WHERE id='".Database::escape_string($field_id)."'";
- $result = Database::query($sql);
- $return = Database::fetch_array($result);
-
- $sql = "SELECT * FROM $table_field_options WHERE field_id='".Database::escape_string($field_id)."' ORDER BY option_order ASC";
- $result = Database::query($sql);
- while ($row = Database::fetch_array($result)) {
- $return['options'][$row['id']] = $row;
- }
- return $return;
- }
-
- public static function get_extra_user_data_by_value($field_variable, $field_value, $all_visibility = true)
- {
- $extra_data = array();
- $table_user_field = Database::get_main_table(TABLE_MAIN_USER_FIELD);
- $table_user_field_values = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $table_user_field_options = Database::get_main_table(TABLE_MAIN_USER_FIELD_OPTIONS);
- $where = '';
-
- $where = "field_variable='".Database::escape_string($field_variable)."' AND field_value='".Database::escape_string($field_value)."'";
- $sql = "SELECT user_id FROM $table_user_field user_field INNER JOIN $table_user_field_values user_field_values
- ON (user_field.id = user_field_values.field_id)
- WHERE $where";
- if ($all_visibility) {
- $sql .= " AND user_field.field_visible = 1 ";
- } else {
- $sql .= " AND user_field.field_visible = 0 ";
- }
- $res = Database::query($sql);
- $result_data = array();
- if (Database::num_rows($res) > 0) {
- while ($row = Database::fetch_array($res)) {
- $result_data[] = $row['user_id'];
- }
- }
- return $result_data;
- }
-
- public static function get_extra_user_data_by_field_variable($field_variable)
- {
- $tbl_user_field_values = Database::get_main_table(TABLE_MAIN_USER_FIELD_VALUES);
- $extra_information_by_variable = self::get_extra_field_information_by_name($field_variable);
- $field_id = intval($extra_information_by_variable['id']);
- $data = array();
- $sql = "SELECT * FROM $tbl_user_field_values WHERE field_id='$field_id'";
- $rs = Database::query($sql);
- if (Database::num_rows($rs) > 0) {
- while ($row = Database::fetch_array($rs)) {
- $user_id = $row['user_id'];
- $data[$user_id] = $row;
- }
- }
- return $data;
- }
-
- public static function get_sessions_by_category($user_id, $is_time_over = false, $ignore_visibility_for_admins = false)
- {
-
- $tbl_session = Database :: get_main_table(TABLE_MAIN_SESSION);
- $tbl_session_course_user = Database :: get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
- $tbl_session_category = Database :: get_main_table(TABLE_MAIN_SESSION_CATEGORY);
- if ($user_id != strval(intval($user_id)))
- return array();
- $categories = array();
-
- $now = api_get_utc_datetime();
- if ($is_time_over) {
- $condition_date_end = " AND (session.date_end < '$now' AND session.date_end != '0000-00-00') ";
- } else {
- if (api_is_allowed_to_create_course()) {
-
- $condition_date_end = null;
- } else {
- $condition_date_end = " AND (session.date_end >= '$now' OR session.date_end = '0000-00-00') ";
- }
- }
- $sql = "SELECT DISTINCT
- session.id,
- session.name,
- session.date_start,
- session.date_end,
- session_category_id,
- session_category.name as session_category_name,
- session_category.date_start session_category_date_start,
- session_category.date_end session_category_date_end,
- nb_days_access_before_beginning,
- nb_days_access_after_end
- FROM $tbl_session as session
- LEFT JOIN $tbl_session_category session_category
- ON (session_category_id = session_category.id)
- INNER JOIN $tbl_session_course_user as session_rel_course_user
- ON (session_rel_course_user.id_session = session.id)
- WHERE (
- session_rel_course_user.id_user = $user_id OR
- session.id_coach = $user_id
- ) $condition_date_end
- ORDER BY session_category_name, name";
- $result = Database::query($sql);
- if (Database::num_rows($result) > 0) {
- while ($row = Database::fetch_array($result)) {
- $categories[$row['session_category_id']]['session_category']['id'] = $row['session_category_id'];
- $categories[$row['session_category_id']]['session_category']['name'] = $row['session_category_name'];
- $categories[$row['session_category_id']]['session_category']['date_start'] = $row['session_category_date_start'];
- $categories[$row['session_category_id']]['session_category']['date_end'] = $row['session_category_date_end'];
- $session_id = $row['id'];
-
- $visibility = api_get_session_visibility($session_id, null, $ignore_visibility_for_admins);
- switch ($visibility) {
- case SESSION_VISIBLE_READ_ONLY:
- case SESSION_VISIBLE:
- case SESSION_AVAILABLE:
- break;
- case SESSION_INVISIBLE:
- continue(2);
- }
- $categories[$row['session_category_id']]['sessions'][$row['id']]['session_name'] = $row['name'];
- $categories[$row['session_category_id']]['sessions'][$row['id']]['session_id'] = $row['id'];
- $categories[$row['session_category_id']]['sessions'][$row['id']]['date_start'] = $row['date_start'];
- $categories[$row['session_category_id']]['sessions'][$row['id']]['date_end'] = $row['date_end'];
- $categories[$row['session_category_id']]['sessions'][$row['id']]['nb_days_access_before_beginning'] = $row['nb_days_access_before_beginning'];
- $categories[$row['session_category_id']]['sessions'][$row['id']]['nb_days_access_after_end'] = $row['nb_days_access_after_end'];
- $categories[$row['session_category_id']]['sessions'][$row['id']]['courses'] = UserManager::get_courses_list_by_session($user_id, $row['id']);
- }
- }
- return $categories;
- }
-
- public static function get_personal_session_course_list($user_id)
- {
-
- $tbl_course = Database :: get_main_table(TABLE_MAIN_COURSE);
- $tbl_user = Database :: get_main_table(TABLE_MAIN_USER);
- $tbl_session = Database :: get_main_table(TABLE_MAIN_SESSION);
- $tbl_session_user = Database :: get_main_table(TABLE_MAIN_SESSION_USER);
- $tbl_course_user = Database :: get_main_table(TABLE_MAIN_COURSE_USER);
- $tbl_session_course_user = Database :: get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
- if ($user_id != strval(intval($user_id))) {
- return array();
- }
-
- $join_access_url = $where_access_url = '';
- if (api_get_multiple_access_url()) {
- $access_url_id = api_get_current_access_url_id();
- if ($access_url_id != -1) {
- $tbl_url_course = Database :: get_main_table(TABLE_MAIN_ACCESS_URL_REL_COURSE);
- $join_access_url = "LEFT JOIN $tbl_url_course url_rel_course ON url_rel_course.course_code= course.code";
- $where_access_url = " AND access_url_id = $access_url_id ";
- }
- }
-
- $tbl_user_course_category = Database :: get_user_personal_table(TABLE_USER_COURSE_CATEGORY);
- $personal_course_list_sql = "SELECT
- course.code,
- course_rel_user.status course_rel_status,
- course_rel_user.sort sort,
- course_rel_user.user_course_cat user_course_cat
- FROM ".$tbl_course_user." course_rel_user
- LEFT JOIN ".$tbl_course." course
- ON course.code = course_rel_user.course_code
- LEFT JOIN ".$tbl_user_course_category." user_course_category
- ON course_rel_user.user_course_cat = user_course_category.id
- $join_access_url
- WHERE course_rel_user.user_id = '".$user_id."' AND
- course_rel_user.relation_type <> ".COURSE_RELATION_TYPE_RRHH."
- $where_access_url
- ORDER BY user_course_category.sort, course_rel_user.sort, course.title ASC";
- $course_list_sql_result = Database::query($personal_course_list_sql);
- $personal_course_list = array();
- if (Database::num_rows($course_list_sql_result) > 0) {
- while ($result_row = Database::fetch_array($course_list_sql_result, 'ASSOC')) {
- $course_info = api_get_course_info($result_row['code']);
- $result_row['course_info'] = $course_info;
- $personal_course_list[] = $result_row;
- }
- }
- $coachCourseConditions = null;
-
- if (api_is_allowed_to_create_course()) {
- $sessionListFromCourseCoach = array();
- $sql =" SELECT DISTINCT id_session FROM $tbl_session_course_user
- WHERE id_user = $user_id AND status = 2 ";
- $result = Database::query($sql);
- if (Database::num_rows($result)) {
- $result = Database::store_result($result);
- foreach ($result as $session) {
- $sessionListFromCourseCoach[]= $session['id_session'];
- }
- }
- if (!empty($sessionListFromCourseCoach)) {
- $condition = implode("','", $sessionListFromCourseCoach);
- $coachCourseConditions = " OR ( id IN ('$condition'))";
- }
- }
-
-
- $sessions = array();
- $sessions_sql = "SELECT DISTINCT id, name, date_start, date_end
- FROM $tbl_session_user, $tbl_session
- WHERE (
- id_session = id AND
- id_user = $user_id AND
- relation_type <> ".SESSION_RELATION_TYPE_RRHH."
- )
- $coachCourseConditions
- ORDER BY date_start, date_end, name";
- $result = Database::query($sessions_sql);
- if (Database::num_rows($result)>0) {
- while ($row = Database::fetch_assoc($result)) {
- $sessions[$row['id']] = $row;
- }
- }
- $sessions_sql = "SELECT DISTINCT id, name, date_start, date_end
- FROM $tbl_session_user, $tbl_session
- WHERE (
- id_coach = $user_id
- )
- $coachCourseConditions
- ORDER BY date_start, date_end, name";
- $result = Database::query($sessions_sql);
- if (Database::num_rows($result)>0) {
- while ($row = Database::fetch_assoc($result)) {
- if (empty($sessions[$row['id']])) {
- $sessions[$row['id']] = $row;
- }
- }
- }
- if (api_is_allowed_to_create_course()) {
- foreach ($sessions as $enreg) {
- $session_id = $enreg['id'];
- $session_visibility = api_get_session_visibility($session_id);
- if ($session_visibility == SESSION_INVISIBLE) {
- continue;
- }
- $id_session = $enreg['id'];
- $personal_course_list_sql = "SELECT DISTINCT
- course.code code,
- course.title i,
- ".(api_is_western_name_order() ? "CONCAT(user.firstname,' ',user.lastname)" : "CONCAT(user.lastname,' ',user.firstname)")." t,
- email, course.course_language l,
- 1 sort,
- category_code user_course_cat,
- date_start,
- date_end,
- session.id as id_session,
- session.name as session_name
- FROM $tbl_session_course_user as session_course_user
- INNER JOIN $tbl_course AS course
- ON course.code = session_course_user.course_code
- INNER JOIN $tbl_session as session
- ON session.id = session_course_user.id_session
- LEFT JOIN $tbl_user as user
- ON user.user_id = session_course_user.id_user OR session.id_coach = user.user_id
- WHERE
- session_course_user.id_session = $id_session AND (
- (session_course_user.id_user = $user_id AND session_course_user.status = 2)
- OR session.id_coach = $user_id
- )
- ORDER BY i";
- $course_list_sql_result = Database::query($personal_course_list_sql);
- while ($result_row = Database::fetch_array($course_list_sql_result, 'ASSOC')) {
- $result_row['course_info'] = api_get_course_info($result_row['code']);
- $key = $result_row['id_session'].' - '.$result_row['code'];
- $personal_course_list[$key] = $result_row;
- }
- }
- }
- foreach ($sessions as $enreg) {
- $session_id = $enreg['id'];
- $session_visibility = api_get_session_visibility($session_id);
- if ($session_visibility == SESSION_INVISIBLE) {
- continue;
- }
-
- $personal_course_list_sql = "SELECT DISTINCT
- course.code code,
- course.title i, CONCAT(user.lastname,' ',user.firstname) t,
- email,
- course.course_language l,
- 1 sort,
- category_code user_course_cat,
- date_start,
- date_end,
- session.id as id_session,
- session.name as session_name,
- IF((session_course_user.id_user = 3 AND session_course_user.status=2),'2', '5')
- FROM $tbl_session_course_user as session_course_user
- INNER JOIN $tbl_course AS course
- ON course.code = session_course_user.course_code AND session_course_user.id_session = $session_id
- INNER JOIN $tbl_session as session ON session_course_user.id_session = session.id
- LEFT JOIN $tbl_user as user ON user.user_id = session_course_user.id_user
- WHERE session_course_user.id_user = $user_id
- ORDER BY i";
- $course_list_sql_result = Database::query($personal_course_list_sql);
- while ($result_row = Database::fetch_array($course_list_sql_result, 'ASSOC')) {
- $result_row['course_info'] = api_get_course_info($result_row['code']);
- $key = $result_row['id_session'].' - '.$result_row['code'];
- if (!isset($personal_course_list[$key])) {
- $personal_course_list[$key] = $result_row;
- }
- }
- }
- return $personal_course_list;
- }
-
- public static function get_courses_list_by_session($user_id, $session_id)
- {
-
- $tbl_session = Database :: get_main_table(TABLE_MAIN_SESSION);
- $tbl_session_course_user = Database :: get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
- $tbl_session_course = Database :: get_main_table(TABLE_MAIN_SESSION_COURSE);
- $user_id = intval($user_id);
- $session_id = intval($session_id);
-
- $join_access_url = $where_access_url = '';
- if (api_get_multiple_access_url()) {
- $access_url_id = api_get_current_access_url_id();
- if ($access_url_id != -1) {
- $tbl_url_session = Database :: get_main_table(TABLE_MAIN_ACCESS_URL_REL_SESSION);
- $join_access_url = " , $tbl_url_session url_rel_session ";
- $where_access_url = " AND access_url_id = $access_url_id AND url_rel_session.session_id = $session_id ";
- }
- }
- $personal_course_list = array();
- $courses = array();
-
- $sql = "SELECT DISTINCT scu.course_code as code
- FROM $tbl_session_course_user as scu
- INNER JOIN $tbl_session_course sc
- ON (scu.id_session = sc.id_session AND scu.course_code = sc.course_code)
- $join_access_url
- WHERE scu.id_user = $user_id AND scu.id_session = $session_id $where_access_url
- ORDER BY code";
- $result = Database::query($sql);
- if (Database::num_rows($result) > 0) {
- while ($result_row = Database::fetch_array($result)) {
- $result_row['status'] = 5;
- if (!in_array($result_row['code'], $courses)) {
- $personal_course_list[] = $result_row;
- $courses[] = $result_row['code'];
- }
- }
- }
- if (api_is_allowed_to_create_course()) {
- $sql = "SELECT DISTINCT scu.course_code as code
- FROM $tbl_session_course_user as scu
- INNER JOIN $tbl_session as s
- ON (scu.id_session = s.id)
- INNER JOIN $tbl_session_course sc
- ON (scu.id_session = sc.id_session AND scu.course_code = sc.course_code)
- $join_access_url
- WHERE
- s.id = $session_id AND
- (
- (scu.id_user=$user_id AND scu.status=2) OR
- s.id_coach = $user_id
- )
- $where_access_url
- ORDER BY code";
- $result = Database::query($sql);
- if (Database::num_rows($result) > 0) {
- while ($result_row = Database::fetch_array($result)) {
- $result_row['status'] = 2;
- if (!in_array($result_row['code'], $courses)) {
- $personal_course_list[] = $result_row;
- $courses[] = $result_row['code'];
- }
- }
- }
- }
- $course_list = array();
- if (api_is_drh()) {
- $session_list = SessionManager::get_sessions_followed_by_drh($user_id);
- $session_list = array_keys($session_list);
- if (in_array($session_id, $session_list)) {
- $course_list = SessionManager::get_course_list_by_session_id($session_id);
- if (!empty($course_list)) {
- foreach ($course_list as $course) {
- $personal_course_list[] = $course;
- }
- }
- }
- } else {
-
- $s = api_get_session_info($session_id);
- if ($s['id_coach'] == $user_id) {
- $course_list = SessionManager::get_course_list_by_session_id($session_id);
- if (!empty($course_list)) {
- foreach ($course_list as $course) {
- if (!in_array($course['code'],$courses)) {
- $personal_course_list[] = $course;
- }
- }
- }
- }
- }
- return $personal_course_list;
- }
-
- public static function get_user_id_from_username($username)
- {
- if (empty($username)) {
- return false;
- }
- $username = trim($username);
- $username = Database::escape_string($username);
- $t_user = Database::get_main_table(TABLE_MAIN_USER);
- $sql = "SELECT user_id FROM $t_user WHERE username = '$username'";
- $res = Database::query($sql);
- if ($res === false) {
- return false;
- }
- if (Database::num_rows($res) !== 1) {
- return false;
- }
- $row = Database::fetch_array($res);
- return $row['user_id'];
- }
-
- public static function get_user_upload_files_by_course($user_id, $course, $resourcetype = 'all')
- {
- $return = '';
- if (!empty($user_id) && !empty($course)) {
- $user_id = intval($user_id);
- $path = api_get_path(SYS_COURSE_PATH).$course.'/document/shared_folder/sf_user_'.$user_id.'/';
- $web_path = api_get_path(WEB_COURSE_PATH).$course.'/document/shared_folder/sf_user_'.$user_id.'/';
- $file_list = array();
- if (is_dir($path)) {
- $handle = opendir($path);
- while ($file = readdir($handle)) {
- if ($file == '.' || $file == '..' || $file == '.htaccess' || is_dir($path.$file)) {
- continue;
- }
- $file_list[] = $file;
- }
- if (count($file_list) > 0) {
- $return = "<h4>$course</h4>";
- $return .= '<ul class="thumbnails">';
- }
- foreach ($file_list as $file) {
- if ($resourcetype == "all") {
- $return .= '<li><a href="'.$web_path.urlencode($file).'" target="_blank">'.htmlentities($file).'</a></li>';
- } elseif ($resourcetype == "images") {
-
- $ext = explode('.', $file);
- if ($ext[1] == 'jpg' || $ext[1] == 'jpeg' || $ext[1] == 'png' || $ext[1] == 'gif' || $ext[1] == 'bmp' || $ext[1] == 'tif') {
- $return .= '<li class="span2"><a class="thumbnail" href="'.$web_path.urlencode($file).'" target="_blank">
- <img src="'.$web_path.urlencode($file).'" ></a>
- </li>';
- }
- }
- }
- if (count($file_list) > 0) {
- $return .= '</ul>';
- }
- }
- }
- return $return;
- }
-
- public static function get_api_keys($user_id = null, $api_service = 'dokeos')
- {
- if ($user_id != strval(intval($user_id)))
- return false;
- if (empty($user_id)) {
- $user_id = api_get_user_id();
- }
- if ($user_id === false)
- return false;
- $service_name = Database::escape_string($api_service);
- if (is_string($service_name) === false) {
- return false;
- }
- $t_api = Database::get_main_table(TABLE_MAIN_USER_API_KEY);
- $sql = "SELECT * FROM $t_api WHERE user_id = $user_id AND api_service='$api_service';";
- $res = Database::query($sql);
- if ($res === false)
- return false;
- $num = Database::num_rows($res);
- if ($num == 0)
- return false;
- $list = array();
- while ($row = Database::fetch_array($res)) {
- $list[$row['id']] = $row['api_key'];
- }
- return $list;
- }
-
- public static function add_api_key($user_id = null, $api_service = 'dokeos')
- {
- if ($user_id != strval(intval($user_id)))
- return false;
- if (empty($user_id)) {
- $user_id = api_get_user_id();
- }
- if ($user_id === false)
- return false;
- $service_name = Database::escape_string($api_service);
- if (is_string($service_name) === false) {
- return false;
- }
- $t_api = Database::get_main_table(TABLE_MAIN_USER_API_KEY);
- $md5 = md5((time() + ($user_id * 5)) - rand(10000, 10000));
- $sql = "INSERT INTO $t_api (user_id, api_key,api_service) VALUES ($user_id,'$md5','$service_name')";
- $res = Database::query($sql);
- if ($res === false)
- return false;
- $num = Database::insert_id();
- return ($num == 0) ? false : $num;
- }
-
- public static function delete_api_key($key_id)
- {
- if ($key_id != strval(intval($key_id)))
- return false;
- if ($key_id === false)
- return false;
- $t_api = Database::get_main_table(TABLE_MAIN_USER_API_KEY);
- $sql = "SELECT * FROM $t_api WHERE id = ".$key_id;
- $res = Database::query($sql);
- if ($res === false)
- return false;
- $num = Database::num_rows($res);
- if ($num !== 1)
- return false;
- $sql = "DELETE FROM $t_api WHERE id = ".$key_id;
- $res = Database::query($sql);
- if ($res === false)
- return false;
- return true;
- }
-
- public static function update_api_key($user_id, $api_service)
- {
- if ($user_id != strval(intval($user_id)))
- return false;
- if ($user_id === false)
- return false;
- $service_name = Database::escape_string($api_service);
- if (is_string($service_name) === false) {
- return false;
- }
- $t_api = Database::get_main_table(TABLE_MAIN_USER_API_KEY);
- $sql = "SELECT id FROM $t_api WHERE user_id=".$user_id." AND api_service='".$api_service."'";
- $res = Database::query($sql);
- $num = Database::num_rows($res);
- if ($num == 1) {
- $id_key = Database::fetch_array($res, 'ASSOC');
- self::delete_api_key($id_key['id']);
- $num = self::add_api_key($user_id, $api_service);
- } elseif ($num == 0) {
- $num = self::add_api_key($user_id);
- }
- return $num;
- }
-
- public static function get_api_key_id($user_id, $api_service)
- {
- if ($user_id != strval(intval($user_id)))
- return false;
- if ($user_id === false)
- return false;
- if (empty($api_service))
- return false;
- $t_api = Database::get_main_table(TABLE_MAIN_USER_API_KEY);
- $service_name = Database::escape_string($api_service);
- $sql = "SELECT id FROM $t_api WHERE user_id=".$user_id." AND api_service='".$api_service."'";
- $res = Database::query($sql);
- if (Database::num_rows($res) < 1) {
- return false;
- }
- $row = Database::fetch_array($res, 'ASSOC');
- return $row['id'];
- }
-
- public static function is_admin($user_id)
- {
- if (empty($user_id) or $user_id != strval(intval($user_id))) {
- return false;
- }
- $admin_table = Database::get_main_table(TABLE_MAIN_ADMIN);
- $sql = "SELECT * FROM $admin_table WHERE user_id = $user_id";
- $res = Database::query($sql);
- return Database::num_rows($res) === 1;
- }
-
- public static function get_number_of_users($status = 0, $access_url_id = null)
- {
- $t_u = Database::get_main_table(TABLE_MAIN_USER);
- $t_a = Database :: get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER);
- $sql = "SELECT count(*) FROM $t_u u";
- $sql2 = '';
- if (is_int($status) && $status > 0) {
- $sql2 .= " WHERE u.status = $status ";
- }
- if (!empty($access_url_id) && $access_url_id == intval($access_url_id)) {
- $sql .= ", $t_a a ";
- $sql2 .= " AND a.access_url_id = $access_url_id AND u.user_id = a.user_id ";
- }
- $sql = $sql.$sql2;
- $res = Database::query($sql);
- if (Database::num_rows($res) === 1) {
- return (int) Database::result($res, 0, 0);
- }
- return false;
- }
-
- public static function resize_picture($file, $max_size_for_picture)
- {
- $temp = false;
- if (file_exists($file)) {
- $temp = new Image($file);
- $image_size = $temp->get_image_size($file);
- $width = $image_size['width'];
- $height = $image_size['height'];
- if ($width >= $height) {
- if ($width >= $max_size_for_picture) {
-
- $new_height = round($height * ($max_size_for_picture / $width));
- $temp->resize($max_size_for_picture, $new_height, 0);
- }
- } else {
- if ($height >= $max_size_for_picture) {
-
- $new_width = round($width * ($max_size_for_picture / $height));
- $temp->resize($new_width, $max_size_for_picture, 0);
- }
- }
- }
- return $temp;
- }
-
- public static function get_picture_user($user_id, $picture_file, $height, $size_picture = USER_IMAGE_SIZE_MEDIUM, $style = '')
- {
- $picture = array();
- $picture['style'] = $style;
- if ($picture_file == 'unknown.jpg') {
- $picture['file'] = api_get_path(WEB_CODE_PATH).'img/'.$picture_file;
- return $picture;
- }
- switch ($size_picture) {
- case USER_IMAGE_SIZE_ORIGINAL :
- $size_picture = '';
- break;
- case USER_IMAGE_SIZE_BIG :
- $size_picture = 'big_';
- break;
- case USER_IMAGE_SIZE_MEDIUM :
- $size_picture = 'medium_';
- break;
- case USER_IMAGE_SIZE_SMALL :
- $size_picture = 'small_';
- break;
- default:
- $size_picture = 'medium_';
- }
- $image_array_sys = self::get_user_picture_path_by_id($user_id, 'system', false, true);
- $image_array = self::get_user_picture_path_by_id($user_id, 'web', false, true);
- $file = $image_array_sys['dir'].$size_picture.$picture_file;
- if (file_exists($file)) {
- $picture['file'] = $image_array['dir'].$size_picture.$picture_file;
- $picture['style'] = '';
- if ($height > 0) {
- $dimension = api_getimagesize($picture['file']);
- $margin = (($height - $dimension['width']) / 2);
-
- $picture['style'] = ' style="padding-top:'.$margin.'px; width:'.$dimension['width'].'px; height:'.$dimension['height'].'px;" ';
- $picture['original_height'] = $dimension['width'];
- $picture['original_width'] = $dimension['height'];
- }
- } else {
- $file = $image_array_sys['dir'].$picture_file;
- if (file_exists($file) && !is_dir($file)) {
- $picture['file'] = $image_array['dir'].$picture_file;
- } else {
- switch ($size_picture) {
- case 'big_' :
- $picture['file'] = api_get_path(WEB_CODE_PATH).'img/unknown.jpg';
- break;
- case 'medium_' :
- $picture['file'] = api_get_path(WEB_CODE_PATH).'img/unknown_50_50.jpg';
- break;
- case 'small_' :
- $picture['file'] = api_get_path(WEB_CODE_PATH).'img/unknown.jpg';
- break;
- default:
- $picture['file'] = api_get_path(WEB_CODE_PATH).'img/unknown.jpg';
- break;
- }
- }
- }
- return $picture;
- }
-
- public static function send_message_in_outbox($email_administrator, $user_id, $title, $content)
- {
- $table_message = Database::get_main_table(TABLE_MESSAGE);
- $table_user = Database::get_main_table(TABLE_MAIN_USER);
- $title = api_utf8_decode($title);
- $content = api_utf8_decode($content);
- $email_administrator = Database::escape_string($email_administrator);
-
- $sql_message_outbox = 'SELECT user_id from '.$table_user.' WHERE email="'.$email_administrator.'" ';
-
- $res_message_outbox = Database::query($sql_message_outbox);
- $array_users_administrator = array();
- while ($row_message_outbox = Database::fetch_array($res_message_outbox, 'ASSOC')) {
- $array_users_administrator[] = $row_message_outbox['user_id'];
- }
-
- for ($i = 0; $i < count($array_users_administrator); $i++) {
- $sql_insert_outbox = "INSERT INTO $table_message(user_sender_id, user_receiver_id, msg_status, send_date, title, content ) ".
- " VALUES (".
- "'".(int) $user_id."', '".(int) ($array_users_administrator[$i])."', '4', '".date('Y-m-d H:i:s')."','".Database::escape_string($title)."','".Database::escape_string($content)."'".
- ")";
- $rs = Database::query($sql_insert_outbox);
- }
- }
-
-
- public static function get_tags($tag, $field_id, $return_format = 'json', $limit = 10)
- {
-
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $field_id = intval($field_id);
- $limit = intval($limit);
- $tag = trim(Database::escape_string($tag));
-
- $sql = "SELECT DISTINCT id, tag from $table_user_tag
- WHERE field_id = $field_id AND tag LIKE '$tag%' ORDER BY tag LIMIT $limit";
- $result = Database::query($sql);
- $return = array();
- if (Database::num_rows($result) > 0) {
- while ($row = Database::fetch_array($result, 'ASSOC')) {
- $return[] = array('caption' => $row['tag'], 'value' => $row['tag']);
- }
- }
- if ($return_format == 'json') {
- $return = json_encode($return);
- }
- return $return;
- }
-
- public static function get_top_tags($field_id, $limit = 100)
- {
-
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $table_user_tag_values = Database::get_main_table(TABLE_MAIN_USER_REL_TAG);
- $field_id = intval($field_id);
- $limit = intval($limit);
-
- $sql = "SELECT count(*) count, tag FROM $table_user_tag_values uv INNER JOIN $table_user_tag ut ON(ut.id = uv.tag_id)
- WHERE field_id = $field_id GROUP BY tag_id ORDER BY count DESC LIMIT $limit";
- $result = Database::query($sql);
- $return = array();
- if (Database::num_rows($result) > 0) {
- while ($row = Database::fetch_array($result, 'ASSOC')) {
- $return[] = $row;
- }
- }
- return $return;
- }
-
- public static function get_user_tags($user_id, $field_id)
- {
-
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $table_user_tag_values = Database::get_main_table(TABLE_MAIN_USER_REL_TAG);
- $field_id = intval($field_id);
- $user_id = intval($user_id);
-
- $sql = "SELECT ut.id, tag,count FROM $table_user_tag ut INNER JOIN $table_user_tag_values uv ON (uv.tag_id=ut.ID)
- WHERE field_id = $field_id AND user_id = $user_id ORDER BY tag";
- $result = Database::query($sql);
- $return = array();
- if (Database::num_rows($result) > 0) {
- while ($row = Database::fetch_array($result, 'ASSOC')) {
- $return[$row['id']] = array('tag' => $row['tag'], 'count' => $row['count']);
- }
- }
- return $return;
- }
-
- public static function get_user_tags_to_string($user_id, $field_id, $show_links = true)
- {
-
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $table_user_tag_values = Database::get_main_table(TABLE_MAIN_USER_REL_TAG);
- $field_id = intval($field_id);
- $user_id = intval($user_id);
-
- $sql = "SELECT ut.id, tag,count FROM $table_user_tag ut INNER JOIN $table_user_tag_values uv ON (uv.tag_id=ut.ID)
- WHERE field_id = $field_id AND user_id = $user_id ORDER BY tag";
- $result = Database::query($sql);
- $return = array();
- if (Database::num_rows($result) > 0) {
- while ($row = Database::fetch_array($result, 'ASSOC')) {
- $return[$row['id']] = array('tag' => $row['tag'], 'count' => $row['count']);
- }
- }
- $user_tags = $return;
- $tag_tmp = array();
- foreach ($user_tags as $tag) {
- if ($show_links) {
- $tag_tmp[] = '<a href="'.api_get_path(WEB_PATH).'main/search/index.php?q='.$tag['tag'].'">'.$tag['tag'].'</a>';
- } else {
- $tag_tmp[] = $tag['tag'];
- }
- }
- if (is_array($user_tags) && count($user_tags) > 0) {
- $return = implode(', ', $tag_tmp);
- } else {
- return '';
- }
- return $return;
- }
-
- public static function get_tag_id($tag, $field_id)
- {
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $tag = Database::escape_string($tag);
- $field_id = intval($field_id);
-
- $sql = "SELECT id FROM $table_user_tag WHERE tag LIKE '$tag' AND field_id = $field_id";
- $result = Database::query($sql);
- if (Database::num_rows($result) > 0) {
- $row = Database::fetch_array($result, 'ASSOC');
- return $row['id'];
- } else {
- return 0;
- }
- }
-
- public static function get_tag_id_from_id($tag_id, $field_id)
- {
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $tag_id = intval($tag_id);
- $field_id = intval($field_id);
- $sql = "SELECT id FROM $table_user_tag WHERE id = '$tag_id' AND field_id = $field_id";
- $result = Database::query($sql);
- if (Database::num_rows($result) > 0) {
- $row = Database::fetch_array($result, 'ASSOC');
- return $row['id'];
- } else {
- return false;
- }
- }
-
- public static function add_tag($tag, $user_id, $field_id)
- {
-
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $table_user_tag_values = Database::get_main_table(TABLE_MAIN_USER_REL_TAG);
- $tag = trim(Database::escape_string($tag));
- $user_id = intval($user_id);
- $field_id = intval($field_id);
- $tag_id = UserManager::get_tag_id($tag, $field_id);
-
- if (is_numeric($tag)) {
-
-
- } else {
- }
-
- if ($tag_id == 0) {
-
- $sql = "INSERT INTO $table_user_tag (tag, field_id,count) VALUES ('$tag','$field_id', count + 1)";
- $result = Database::query($sql);
- $last_insert_id = Database::get_last_insert_id();
- } else {
-
- $sql = "UPDATE $table_user_tag SET count = count + 1 WHERE id = $tag_id";
- $result = Database::query($sql);
- $last_insert_id = $tag_id;
- }
- if (!empty($last_insert_id) && ($last_insert_id != 0)) {
-
- $sql_select = "SELECT tag_id FROM $table_user_tag_values WHERE user_id = $user_id AND tag_id = $last_insert_id ";
- $result = Database::query($sql_select);
-
- if (Database::num_rows($result) == 0) {
- $sql = "INSERT INTO $table_user_tag_values SET user_id = $user_id, tag_id = $last_insert_id";
- $result = Database::query($sql);
- }
- }
- }
-
- public static function delete_user_tags($user_id, $field_id)
- {
-
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $table_user_tag_values = Database::get_main_table(TABLE_MAIN_USER_REL_TAG);
- $tags = UserManager::get_user_tags($user_id, $field_id);
- if (is_array($tags) && count($tags) > 0) {
- foreach ($tags as $key => $tag) {
- if ($tag['count'] > '0') {
- $sql = "UPDATE $table_user_tag SET count = count - 1 WHERE id = $key ";
- Database::query($sql);
- }
- $sql = "DELETE FROM $table_user_tag_values WHERE user_id = $user_id AND tag_id = $key";
- Database::query($sql);
- }
- }
- }
-
- public static function process_tags($tags, $user_id, $field_id)
- {
-
- if (is_array($tags)) {
- foreach ($tags as $tag) {
- UserManager::add_tag($tag, $user_id, $field_id);
- }
- } else {
- UserManager::add_tag($tags, $user_id, $field_id);
- }
- return true;
- }
-
- public static function get_all_administrators()
- {
- $table_user = Database::get_main_table(TABLE_MAIN_USER);
- $table_admin = Database::get_main_table(TABLE_MAIN_ADMIN);
- $tbl_url_rel_user = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER);
- $access_url_id = api_get_current_access_url_id();
- if (api_get_multiple_access_url()) {
- $access_url_id = api_get_current_access_url_id();
- $sql = "SELECT admin.user_id, username, firstname, lastname, email FROM $tbl_url_rel_user as url INNER JOIN $table_admin as admin
- ON (admin.user_id=url.user_id) INNER JOIN $table_user u ON (u.user_id=admin.user_id)
- WHERE access_url_id ='".$access_url_id."'";
- } else {
- $sql = "SELECT admin.user_id, username, firstname, lastname, email FROM $table_admin as admin
- INNER JOIN $table_user u ON (u.user_id=admin.user_id)";
- }
- $result = Database::query($sql);
- $return = array();
- if (Database::num_rows($result) > 0) {
- while ($row = Database::fetch_array($result, 'ASSOC')) {
- $return[$row['user_id']] = $row;
- }
- }
- return $return;
- }
-
- public static function get_all_user_tags($tag, $field_id = 0, $from = 0, $number_of_items = 10, $getCount = false)
- {
- $user_table = Database::get_main_table(TABLE_MAIN_USER);
- $table_user_tag = Database::get_main_table(TABLE_MAIN_TAG);
- $table_user_tag_values = Database::get_main_table(TABLE_MAIN_USER_REL_TAG);
- $access_url_rel_user_table = Database :: get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER);
- $tag = Database::escape_string($tag);
- $field_id = intval($field_id);
- $from = intval($from);
- $number_of_items = intval($number_of_items);
- $where_field = "";
- if ($field_id != 0) {
- $where_field = " field_id = $field_id AND ";
- }
-
- if ($getCount) {
- $select = "SELECT count(DISTINCT u.user_id) count";
- } else {
- $select = "SELECT DISTINCT u.user_id, u.username, firstname, lastname, email, tag, picture_uri";
- }
- $sql = " $select
- FROM $user_table u
- INNER JOIN $access_url_rel_user_table url_rel_user ON (u.user_id = url_rel_user.user_id)
- LEFT JOIN $table_user_tag_values uv ON (u.user_id AND uv.user_id AND uv.user_id = url_rel_user.user_id)
- LEFT JOIN $table_user_tag ut ON (uv.tag_id = ut.id)
- WHERE
- ($where_field tag LIKE '$tag%') OR
- (
- u.firstname LIKE '%".$tag."%' OR
- u.lastname LIKE '%".$tag."%' OR
- u.username LIKE '%".$tag."%' OR
- concat(u.firstname,' ',u.lastname) LIKE '%".$tag."%' OR
- concat(u.lastname,' ',u.firstname) LIKE '%".$tag."%'
- )
- AND
- url_rel_user.access_url_id=".api_get_current_access_url_id();
- $keyword_active = true;
-
- if ($keyword_active) {
- $sql .= " AND u.active='1'";
- }
-
- $sql .= " AND u.status <> 6 ";
- $sql .= " ORDER BY username";
- $sql .= " LIMIT $from , $number_of_items";
- $result = Database::query($sql);
- $return = array();
- if (Database::num_rows($result) > 0) {
- if ($getCount) {
- $row = Database::fetch_array($result, 'ASSOC');
- return $row['count'];
- }
- while ($row = Database::fetch_array($result, 'ASSOC')) {
- if (isset($return[$row['user_id']]) && !empty($return[$row['user_id']]['tag'])) {
- $url = Display::url($row['tag'], api_get_path(WEB_PATH).'main/social/search.php?q='.$row['tag'], array('class' => 'tag'));
- $row['tag'] = $url;
- }
- $return[$row['user_id']] = $row;
- }
- }
- return $return;
- }
-
- public static function get_search_form($query)
- {
- return '
- <form method="GET" class="well form-search" action="'.api_get_path(WEB_PATH).'main/social/search.php">
- <input placeholder="'.get_lang('UsersGroups').'" type="text" class="input-medium" value="'.api_htmlentities(Security::remove_XSS($query)).'" name="q"/>
- <button class="btn" type="submit" value="search">'.get_lang('Search').'</button>
- </form>';
- }
-
- public static function show_menu()
- {
- echo '<div class="actions">';
- echo '<a href="/main/auth/profile.php">'.Display::return_icon('profile.png').' '.get_lang('PersonalData').'</a>';
- echo '<a href="/main/messages/inbox.php">'.Display::return_icon('inbox.png').' '.get_lang('Inbox').'</a>';
- echo '<a href="/main/messages/outbox.php">'.Display::return_icon('outbox.png').' '.get_lang('Outbox').'</a>';
- echo '<span style="float:right; padding-top:7px;">'.
- '<a href="/main/auth/profile.php?show=1">'.Display::return_icon('edit.gif').' '.get_lang('Configuration').'</a>';
- '</span>';
- echo '</div>';
- }
-
- public static function get_special_course_list()
- {
-
- $tbl_course_user = Database :: get_main_table(TABLE_MAIN_COURSE_USER);
- $tbl_course = Database :: get_main_table(TABLE_MAIN_COURSE);
- $tbl_course_field = Database :: get_main_table(TABLE_MAIN_COURSE_FIELD);
- $tbl_course_field_value = Database :: get_main_table(TABLE_MAIN_COURSE_FIELD_VALUES);
- $tbl_user_course_category = Database :: get_user_personal_table(TABLE_USER_COURSE_CATEGORY);
-
- $join_access_url = $where_access_url = '';
- if (api_get_multiple_access_url()) {
- $access_url_id = api_get_current_access_url_id();
- $tbl_url_course = Database :: get_main_table(TABLE_MAIN_ACCESS_URL_REL_COURSE);
- $join_access_url = "LEFT JOIN $tbl_url_course url_rel_course ON url_rel_course.course_code= course.code";
- $where_access_url = " AND access_url_id = $access_url_id ";
- }
-
- $sql_special_course = "SELECT course_code FROM $tbl_course_field_value tcfv INNER JOIN $tbl_course_field tcf ON ".
- " tcfv.field_id = tcf.id WHERE tcf.field_variable = 'special_course' AND tcfv.field_value = 1 ";
- $special_course_result = Database::query($sql_special_course);
- $code_special_courses = '';
- if (Database::num_rows($special_course_result) > 0) {
- $special_course_list = array();
- while ($result_row = Database::fetch_array($special_course_result)) {
- $special_course_list[] = '"'.$result_row['course_code'].'"';
- }
- $code_special_courses = ' course.code IN ('.join($special_course_list, ',').') ';
- }
-
- $course_list_sql = '';
- $course_list = array();
- if (!empty($code_special_courses)) {
- $course_list_sql = "SELECT course.code k, course.directory d, course.visual_code c, course.db_name db, course.title i, course.tutor_name t, course.course_language l, course_rel_user.status s, course_rel_user.sort sort, course_rel_user.user_course_cat user_course_cat
- FROM ".$tbl_course_user." course_rel_user
- LEFT JOIN ".$tbl_course." course
- ON course.code = course_rel_user.course_code
- LEFT JOIN ".$tbl_user_course_category." user_course_category
- ON course_rel_user.user_course_cat = user_course_category.id
- $join_access_url
- WHERE $code_special_courses $where_access_url
- GROUP BY course.code
- ORDER BY user_course_category.sort,course.title,course_rel_user.sort ASC";
- $course_list_sql_result = Database::query($course_list_sql);
- while ($result_row = Database::fetch_array($course_list_sql_result)) {
- $course_list[] = $result_row;
- }
- }
- return $course_list;
- }
-
- public static function relate_users($friend_id, $my_user_id, $relation_type)
- {
- $tbl_my_friend = Database :: get_main_table(TABLE_MAIN_USER_REL_USER);
- $friend_id = intval($friend_id);
- $my_user_id = intval($my_user_id);
- $relation_type = intval($relation_type);
- $sql = 'SELECT COUNT(*) as count FROM '.$tbl_my_friend.' WHERE friend_user_id='.$friend_id.' AND user_id='.$my_user_id.' AND relation_type <> '.USER_RELATION_TYPE_RRHH.' ';
- $result = Database::query($sql);
- $row = Database :: fetch_array($result, 'ASSOC');
- $current_date = date('Y-m-d H:i:s');
- if ($row['count'] == 0) {
- $sql_i = 'INSERT INTO '.$tbl_my_friend.'(friend_user_id,user_id,relation_type,last_edit)values('.$friend_id.','.$my_user_id.','.$relation_type.',"'.$current_date.'");';
- Database::query($sql_i);
- return true;
- } else {
- $sql = 'SELECT COUNT(*) as count, relation_type FROM '.$tbl_my_friend.' WHERE friend_user_id='.$friend_id.' AND user_id='.$my_user_id.' AND relation_type <> '.USER_RELATION_TYPE_RRHH.' ';
- $result = Database::query($sql);
- $row = Database :: fetch_array($result, 'ASSOC');
- if ($row['count'] == 1) {
-
- if ($row['relation_type'] != $relation_type && $relation_type == USER_RELATION_TYPE_RRHH) {
- $sql_i = 'INSERT INTO '.$tbl_my_friend.'(friend_user_id,user_id,relation_type,last_edit)values('.$friend_id.','.$my_user_id.','.$relation_type.',"'.$current_date.'");';
- } else {
- $sql_i = 'UPDATE '.$tbl_my_friend.' SET relation_type='.$relation_type.' WHERE friend_user_id='.$friend_id.' AND user_id='.$my_user_id;
- }
- Database::query($sql_i);
- return true;
- } else {
- return false;
- }
- }
- }
-
- public static function remove_user_rel_user($friend_id, $real_removed = false, $with_status_condition = '')
- {
- $tbl_my_friend = Database :: get_main_table(TABLE_MAIN_USER_REL_USER);
- $tbl_my_message = Database :: get_main_table(TABLE_MAIN_MESSAGE);
- $friend_id = intval($friend_id);
- if ($real_removed) {
-
-
- $extra_condition = '';
- if ($with_status_condition != '') {
- $extra_condition = ' AND relation_type = '.intval($with_status_condition);
- }
- $sql_delete_relationship1 = 'DELETE FROM '.$tbl_my_friend.' WHERE relation_type <> '.USER_RELATION_TYPE_RRHH.' AND friend_user_id='.$friend_id.' '.$extra_condition;
- $sql_delete_relationship2 = 'DELETE FROM '.$tbl_my_friend.' WHERE relation_type <> '.USER_RELATION_TYPE_RRHH.' AND user_id='.$friend_id.' '.$extra_condition;
- Database::query($sql_delete_relationship1);
- Database::query($sql_delete_relationship2);
- } else {
- $user_id = api_get_user_id();
- $sql = 'SELECT COUNT(*) as count FROM '.$tbl_my_friend.' WHERE user_id='.$user_id.' AND relation_type NOT IN('.USER_RELATION_TYPE_DELETED.', '.USER_RELATION_TYPE_RRHH.') AND friend_user_id='.$friend_id;
- $result = Database::query($sql);
- $row = Database :: fetch_array($result, 'ASSOC');
- if ($row['count'] == 1) {
-
- $sql_i = 'UPDATE '.$tbl_my_friend.' SET relation_type='.USER_RELATION_TYPE_DELETED.' WHERE user_id='.$user_id.' AND friend_user_id='.$friend_id;
- $sql_j = 'UPDATE '.$tbl_my_message.' SET msg_status='.MESSAGE_STATUS_INVITATION_DENIED.' WHERE user_receiver_id='.$user_id.' AND user_sender_id='.$friend_id.' AND update_date="0000-00-00 00:00:00" ';
-
- $sql_ij = 'UPDATE '.$tbl_my_friend.' SET relation_type='.USER_RELATION_TYPE_DELETED.' WHERE user_id='.$friend_id.' AND friend_user_id='.$user_id;
- $sql_ji = 'UPDATE '.$tbl_my_message.' SET msg_status='.MESSAGE_STATUS_INVITATION_DENIED.' WHERE user_receiver_id='.$friend_id.' AND user_sender_id='.$user_id.' AND update_date="0000-00-00 00:00:00" ';
- Database::query($sql_i);
- Database::query($sql_j);
- Database::query($sql_ij);
- Database::query($sql_ji);
- }
- }
- }
-
- public static function get_users_followed_by_drh(
- $userId,
- $userStatus = 0,
- $getOnlyUserId = false,
- $getSql = false,
- $getCount = false,
- $from = null,
- $numberItems = null,
- $column = null,
- $direction = null,
- $active = null,
- $lastConnectionDate = null
- ) {
- return self::getUsersFollowedByUser(
- $userId,
- $userStatus,
- $getOnlyUserId,
- $getSql,
- $getCount,
- $from,
- $numberItems,
- $column,
- $direction,
- $active,
- $lastConnectionDate,
- DRH
- );
- }
-
- public static function getUsersFollowedByUser(
- $userId,
- $userStatus = null,
- $getOnlyUserId = false,
- $getSql = false,
- $getCount = false,
- $from = null,
- $numberItems = null,
- $column = null,
- $direction = null,
- $active = null,
- $lastConnectionDate = null,
- $status = null
- ) {
-
- $tbl_user = Database::get_main_table(TABLE_MAIN_USER);
- $tbl_user_rel_user = Database::get_main_table(TABLE_MAIN_USER_REL_USER);
- $tbl_user_rel_access_url = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER);
- $tbl_session = Database::get_main_table(TABLE_MAIN_SESSION);
- $tbl_course = Database::get_main_table(TABLE_MAIN_COURSE);
- $tbl_course_user = Database::get_main_table(TABLE_MAIN_COURSE_USER);
- $tbl_course_rel_access_url = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_COURSE);
- $tbl_session_rel_course_rel_user = Database::get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
- $tbl_session_rel_access_url = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_SESSION);
- $tbl_session_rel_user = Database::get_main_table(TABLE_MAIN_SESSION_USER);
- $userId = intval($userId);
- $limitCondition = null;
- if (isset($from) && isset($numberItems)) {
- $from = intval($from);
- $numberItems = intval($numberItems);
- $limitCondition = "LIMIT $from, $numberItems";
- }
- $column = Database::escape_string($column);
- $direction = in_array(strtolower($direction), array('asc', 'desc')) ? $direction : null;
- $userConditions = '';
- if (!empty($userStatus)) {
- $userConditions .= ' AND u.status = '.$userStatus;
- }
- $select = " SELECT DISTINCT u.user_id, u.username, u.lastname, u.firstname, u.email ";
- if ($getOnlyUserId) {
- $select = " SELECT DISTINCT u.user_id";
- }
- $masterSelect = "SELECT DISTINCT * FROM ";
- if ($getCount) {
- $masterSelect = "SELECT COUNT(DISTINCT(user_id)) as count FROM ";
- $select = " SELECT DISTINCT(u.user_id) ";
- }
- if (!is_null($active)) {
- $active = intval($active);
- $userConditions .= " AND u.active = $active ";
- }
- if (!empty($lastConnectionDate)) {
- $lastConnectionDate = Database::escape_string($lastConnectionDate);
- $userConditions .= " AND u.last_login <= '$lastConnectionDate' ";
- }
- $courseConditions = null;
- $sessionConditionsCoach = null;
- $sessionConditionsTeacher = null;
- $drhConditions = null;
- $teacherSelect = null;
- switch($status) {
- case DRH:
- $drhConditions .= " AND
- friend_user_id = '$userId' AND
- relation_type = '".USER_RELATION_TYPE_RRHH."'
- ";
- break;
- case COURSEMANAGER:
- $drhConditions .= " AND
- friend_user_id = '$userId' AND
- relation_type = '".USER_RELATION_TYPE_RRHH."'
- ";
- $sessionConditionsCoach .= " AND
- (s.id_coach = '$userId')
- ";
- $sessionConditionsTeacher .= " AND
- (scu.status = 2 AND scu.id_user = '$userId')
- ";
- $teacherSelect =
- "UNION ALL (
- $select
- FROM $tbl_user u
- INNER JOIN $tbl_session_rel_user sru ON (sru.id_user = u.user_id)
- WHERE
- sru.id_session IN (
- SELECT DISTINCT(s.id) FROM $tbl_session s INNER JOIN
- $tbl_session_rel_access_url
- WHERE access_url_id = ".api_get_current_access_url_id()."
- $sessionConditionsCoach
- UNION (
- SELECT DISTINCT(s.id) FROM $tbl_session s
- INNER JOIN $tbl_session_rel_access_url url
- ON (url.session_id = s.id)
- INNER JOIN $tbl_session_rel_course_rel_user scu
- ON (scu.id_session = s.id)
- WHERE access_url_id = ".api_get_current_access_url_id()."
- $sessionConditionsTeacher
- )
- )
- $userConditions
- )
- UNION ALL(
- $select
- FROM $tbl_user u
- INNER JOIN $tbl_course_user cu ON (cu.user_id = u.user_id)
- WHERE cu.course_code IN (
- SELECT DISTINCT(course_code) FROM $tbl_course_user
- WHERE user_id = $userId AND status = ".COURSEMANAGER."
- )
- $userConditions
- )"
- ;
- break;
- }
- $join = null;
- $sql = " $masterSelect
- (
- (
- $select
- FROM $tbl_user u
- INNER JOIN $tbl_user_rel_user uru ON (uru.user_id = u.user_id)
- LEFT JOIN $tbl_user_rel_access_url a ON (a.user_id = u.user_id)
- $join
- WHERE
- access_url_id = ".api_get_current_access_url_id()."
- $drhConditions
- $userConditions
- )
- $teacherSelect
- ) as t1";
- if ($getSql) {
- return $sql;
- }
- if ($getCount) {
- $result = Database::query($sql);
- $row = Database::fetch_array($result);
-
-
- return $row['count'];
- }
- $orderBy = null;
- if (api_is_western_name_order()) {
- $orderBy .= " ORDER BY firstname, lastname ";
- } else {
- $orderBy .= " ORDER BY lastname, firstname ";
- }
- if (!empty($column) && !empty($direction)) {
-
- $column = str_replace('u.', '', $column);
- $orderBy = " ORDER BY $column $direction ";
- }
- $sql .= $orderBy;
- $sql .= $limitCondition;
- $result = Database::query($sql);
- $users = array();
- if (Database::num_rows($result) > 0) {
-
- while ($row = Database::fetch_array($result)) {
- $users[$row['user_id']] = $row;
- }
- }
- return $users;
- }
-
- public static function suscribe_users_to_hr_manager($hr_dept_id, $users_id)
- {
-
- $tbl_user_rel_user = Database::get_main_table(TABLE_MAIN_USER_REL_USER);
- $tbl_user_rel_access_url = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER);
- $hr_dept_id = intval($hr_dept_id);
- $affected_rows = 0;
- if (api_get_multiple_access_url()) {
-
- $sql = "SELECT s.user_id FROM $tbl_user_rel_user s
- INNER JOIN $tbl_user_rel_access_url a
- ON (a.user_id = s.user_id)
- WHERE
- friend_user_id = $hr_dept_id AND
- relation_type = '".USER_RELATION_TYPE_RRHH."' AND
- access_url_id = ".api_get_current_access_url_id()."";
- } else {
- $sql = "SELECT user_id FROM $tbl_user_rel_user
- WHERE
- friend_user_id = $hr_dept_id AND
- relation_type = '".USER_RELATION_TYPE_RRHH."' ";
- }
- $result = Database::query($sql);
- if (Database::num_rows($result) > 0) {
- while ($row = Database::fetch_array($result)) {
- $sql = "DELETE FROM $tbl_user_rel_user
- WHERE
- user_id = '{$row['user_id']}' AND
- friend_user_id = $hr_dept_id AND
- relation_type = '".USER_RELATION_TYPE_RRHH."' ";
- Database::query($sql);
- }
- }
-
- if (is_array($users_id)) {
- foreach ($users_id as $user_id) {
- $user_id = intval($user_id);
- $sql = "INSERT IGNORE INTO $tbl_user_rel_user(user_id, friend_user_id, relation_type)
- VALUES ('$user_id', $hr_dept_id, '".USER_RELATION_TYPE_RRHH."')";
- Database::query($sql);
- $affected_rows = Database::affected_rows();
- }
- }
- return $affected_rows;
- }
-
- public static function is_user_followed_by_drh($user_id, $hr_dept_id)
- {
-
- $tbl_user_rel_user = Database::get_main_table(TABLE_MAIN_USER_REL_USER);
- $user_id = intval($user_id);
- $hr_dept_id = intval($hr_dept_id);
- $result = false;
- $sql = "SELECT user_id FROM $tbl_user_rel_user
- WHERE
- user_id='$user_id' AND
- friend_user_id='$hr_dept_id' AND
- relation_type = ".USER_RELATION_TYPE_RRHH;
- $rs = Database::query($sql);
- if (Database::num_rows($rs) > 0) {
- $result = true;
- }
- return $result;
- }
-
- public static function get_user_id_of_course_admin_or_session_admin($course_id)
- {
- $session = api_get_session_id();
- $table_user = Database::get_main_table(TABLE_MAIN_USER);
- $table_course_user = Database::get_main_table(TABLE_MAIN_COURSE_USER);
- $table_session_course_user = Database::get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
- if ($session == 0 || is_null($session)) {
- $sql = 'SELECT u.user_id FROM '.$table_user.' u
- INNER JOIN '.$table_course_user.' ru ON ru.user_id=u.user_id
- WHERE
- ru.status = 1 AND
- ru.course_code = "'.Database::escape_string($course_id).'" ';
- $rs = Database::query($sql);
- $num_rows = Database::num_rows($rs);
- if ($num_rows == 1) {
- $row = Database::fetch_array($rs);
- return $row['user_id'];
- } else {
- $my_num_rows = $num_rows;
- $my_user_id = Database::result($rs, $my_num_rows - 1, 'user_id');
- return $my_user_id;
- }
- } elseif ($session > 0) {
- $sql = 'SELECT u.user_id FROM '.$table_user.' u
- INNER JOIN '.$table_session_course_user.' sru
- ON sru.id_user=u.user_id
- WHERE
- sru.course_code="'.Database::escape_string($course_id).'" AND
- sru.status=2';
- $rs = Database::query($sql);
- $row = Database::fetch_array($rs);
- return $row['user_id'];
- }
- }
-
- public static function is_user_certified($cat_id, $user_id)
- {
- $table_certificate = Database::get_main_table(TABLE_MAIN_GRADEBOOK_CERTIFICATE);
- $sql = 'SELECT path_certificate FROM '.$table_certificate.'
- WHERE
- cat_id="'.Database::escape_string($cat_id).'" AND
- user_id="'.Database::escape_string($user_id).'"';
- $rs = Database::query($sql);
- $row = Database::fetch_array($rs);
- if ($row['path_certificate'] == '' || is_null($row['path_certificate'])) {
- return false;
- } else {
- return true;
- }
- }
-
- public static function get_info_gradebook_certificate($course_code, $user_id)
- {
- $tbl_grade_certificate = Database::get_main_table(TABLE_MAIN_GRADEBOOK_CERTIFICATE);
- $tbl_grade_category = Database::get_main_table(TABLE_MAIN_GRADEBOOK_CATEGORY);
- $session_id = api_get_session_id();
- if (empty($session_id)) {
- $session_condition = ' AND (session_id = "" OR session_id = 0 OR session_id IS NULL )';
- } else {
- $session_condition = " AND session_id = $session_id";
- }
-
- require_once api_get_path(SYS_CODE_PATH).'gradebook/lib/be.inc.php';
- require_once api_get_path(SYS_CODE_PATH).'gradebook/lib/scoredisplay.class.php';
- $sql = 'SELECT * FROM '.$tbl_grade_certificate.' WHERE cat_id = (SELECT id FROM '.$tbl_grade_category.'
- WHERE
- course_code = "'.Database::escape_string($course_code).'" '.$session_condition.' LIMIT 1 ) AND
- user_id='.Database::escape_string($user_id);
- $rs = Database::query($sql);
- if (Database::num_rows($rs) > 0) {
- $row = Database::fetch_array($rs, 'ASSOC');
- $score = $row['score_certificate'];
- $category_id = $row['cat_id'];
- $cat = Category::load($category_id);
- $displayscore = ScoreDisplay::instance();
- if (isset($cat) && $displayscore->is_custom()) {
- $grade = $displayscore->display_score(array($score, $cat[0]->get_weight()), SCORE_DIV_PERCENT_WITH_CUSTOM);
- } else {
- $grade = $displayscore->display_score(array($score, $cat[0]->get_weight()));
- }
- $row['grade'] = $grade;
- return $row;
- }
- return false;
- }
-
- public static function get_user_path_certificate($user_id)
- {
- $my_certificate = array();
- $table_certificate = Database::get_main_table(TABLE_MAIN_GRADEBOOK_CERTIFICATE);
- $table_gradebook_category = Database::get_main_table(TABLE_MAIN_GRADEBOOK_CATEGORY);
- $session_id = api_get_session_id();
- $user_id = intval($user_id);
- if ($session_id == 0 || is_null($session_id)) {
- $sql_session = 'AND (session_id='.Database::escape_string($session_id).' OR isnull(session_id)) ';
- } elseif ($session_id > 0) {
- $sql_session = 'AND session_id='.Database::escape_string($session_id);
- } else {
- $sql_session = '';
- }
- $sql = "SELECT tc.path_certificate,tc.cat_id,tgc.course_code,tgc.name
- FROM $table_certificate tc, $table_gradebook_category tgc
- WHERE tgc.id = tc.cat_id AND tc.user_id='$user_id'
- ORDER BY tc.date_certificate DESC limit 5";
- $rs = Database::query($sql);
- while ($row = Database::fetch_array($rs)) {
- $my_certificate[] = $row;
- }
- return $my_certificate;
- }
-
- public static function is_session_course_coach($user_id, $course_code, $session_id)
- {
- $tbl_session_course_rel_user = Database::get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
-
- $user_id = intval($user_id);
- $course_code = Database::escape_string($course_code);
- $session_id = intval($session_id);
- $result = false;
- $sql = "SELECT id_session FROM $tbl_session_course_rel_user
- WHERE
- id_session=$session_id AND
- course_code='$course_code' AND
- id_user = $user_id AND
- status = 2 ";
- $res = Database::query($sql);
- if (Database::num_rows($res) > 0) {
- $result = true;
- }
- return $result;
- }
-
- public static function get_favicon_from_url($url1, $url2 = null)
- {
- $icon_link = '';
- $url = $url1;
- if (empty($url1)) {
- $url = $url2;
- if (empty($url)) {
- $url = api_get_access_url(api_get_current_access_url_id());
- $url = $url[0];
- }
- }
- if (!empty($url)) {
- $pieces = parse_url($url);
- $icon_link = $pieces['scheme'].'://'.$pieces['host'].'/favicon.ico';
- }
- return $icon_link;
- }
-
- public static function delete_inactive_student($student_id, $years = 2, $warning_message = false, $return_timestamp = false)
- {
- $tbl_track_login = Database :: get_statistic_table(TABLE_STATISTIC_TRACK_E_LOGIN);
- $sql = 'SELECT login_date FROM '.$tbl_track_login.'
- WHERE login_user_id = '.intval($student_id).'
- ORDER BY login_date DESC LIMIT 0,1';
- if (empty($years)) {
- $years = 1;
- }
- $inactive_time = $years * 31536000;
- $rs = Database::query($sql);
- if (Database::num_rows($rs) > 0) {
- if ($last_login_date = Database::result($rs, 0, 0)) {
- $last_login_date = api_get_local_time($last_login_date, null, date_default_timezone_get());
- if ($return_timestamp) {
- return api_strtotime($last_login_date);
- } else {
- if (!$warning_message) {
- return api_format_date($last_login_date, DATE_FORMAT_SHORT);
- } else {
- $timestamp = api_strtotime($last_login_date);
- $currentTimestamp = time();
-
-
-
- if ($currentTimestamp - $timestamp > $inactive_time && UserManager::delete_user($student_id)) {
- Display :: display_normal_message(get_lang('UserDeleted'));
- echo '<p>', 'id', $student_id, ':', $last_login_date, '</p>';
- }
- }
- }
- }
- }
- return false;
- }
-
- static function set_extra_fields_in_form($form, $extra_data, $form_name, $admin_permissions = false, $user_id = null)
- {
- $user_id = intval($user_id);
-
- $extra = UserManager::get_extra_fields(0, 50, 5, 'ASC');
- $jquery_ready_content = null;
- foreach ($extra as $field_details) {
- if (!$admin_permissions) {
- if ($field_details[6] == 0) {
- continue;
- }
- }
- switch ($field_details[2]) {
- case self::USER_FIELD_TYPE_TEXT:
- $form->addElement('text', 'extra_'.$field_details[1], $field_details[3], array('size' => 40));
- $form->applyFilter('extra_'.$field_details[1], 'stripslashes');
- $form->applyFilter('extra_'.$field_details[1], 'trim');
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
- break;
- case self::USER_FIELD_TYPE_TEXTAREA:
- $form->add_html_editor(
- 'extra_'.$field_details[1],
- $field_details[3],
- false,
- false,
- array('ToolbarSet' => 'Profile', 'Width' => '100%', 'Height' => '130')
- );
-
- $form->applyFilter('extra_'.$field_details[1], 'stripslashes');
- $form->applyFilter('extra_'.$field_details[1], 'trim');
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
- break;
- case self::USER_FIELD_TYPE_RADIO:
- $group = array();
- foreach ($field_details[9] as $option_id => $option_details) {
- $options[$option_details[1]] = $option_details[2];
- $group[] = & HTML_QuickForm::createElement(
- 'radio',
- 'extra_'.$field_details[1],
- $option_details[1],
- $option_details[2].'<br />',
- $option_details[1]
- );
- }
- $form->addGroup($group, 'extra_'.$field_details[1], $field_details[3], '');
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
- break;
- case self::USER_FIELD_TYPE_SELECT:
- $get_lang_variables = false;
- if (in_array($field_details[1], array('mail_notify_message', 'mail_notify_invitation', 'mail_notify_group_message'))) {
- $get_lang_variables = true;
- }
- $options = array();
- foreach ($field_details[9] as $option_id => $option_details) {
-
- if ($get_lang_variables) {
- $options[$option_details[1]] = get_lang($option_details[2]);
- } else {
- $options[$option_details[1]] = $option_details[2];
- }
- }
- if ($get_lang_variables) {
- $field_details[3] = get_lang($field_details[3]);
- }
- $form->addElement(
- 'select',
- 'extra_'.$field_details[1],
- $field_details[3],
- $options,
- array('class' => 'chzn-select', 'id' => 'extra_'.$field_details[1])
- );
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
- break;
- case self::USER_FIELD_TYPE_SELECT_MULTIPLE:
- $options = array();
- foreach ($field_details[9] as $option_id => $option_details) {
- $options[$option_details[1]] = $option_details[2];
- }
- $form->addElement('select', 'extra_'.$field_details[1], $field_details[3], $options, array('multiple' => 'multiple'));
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
- break;
- case self::USER_FIELD_TYPE_DATE:
- $form->addElement('datepickerdate', 'extra_'.$field_details[1], $field_details[3], array('form_name' => $form_name));
- $form->_elements[$form->_elementIndex['extra_'.$field_details[1]]]->setLocalOption('minYear', 1900);
- $defaults['extra_'.$field_details[1]] = date('Y-m-d 12:00:00');
- $form->setDefaults($defaults);
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
- $form->applyFilter('theme', 'trim');
- break;
- case self::USER_FIELD_TYPE_DATETIME:
- $form->addElement('datepicker', 'extra_'.$field_details[1], $field_details[3], array('form_name' => $form_name));
- $form->_elements[$form->_elementIndex['extra_'.$field_details[1]]]->setLocalOption('minYear', 1900);
- $defaults['extra_'.$field_details[1]] = date('Y-m-d 12:00:00');
- $form->setDefaults($defaults);
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
- $form->applyFilter('theme', 'trim');
- break;
- case self::USER_FIELD_TYPE_DOUBLE_SELECT:
- foreach ($field_details[9] as $key => $element) {
- if ($element[2][0] == '*') {
- $values['*'][$element[0]] = str_replace('*', '', $element[2]);
- } else {
- $values[0][$element[0]] = $element[2];
- }
- }
- $group = '';
- $group[] = & HTML_QuickForm::createElement('select', 'extra_'.$field_details[1], '', $values[0], '');
- $group[] = & HTML_QuickForm::createElement('select', 'extra_'.$field_details[1].'*', '', $values['*'], '');
- $form->addGroup($group, 'extra_'.$field_details[1], $field_details[3], ' ');
- if (!$admin_permissions) {
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- }
-
- if (array_key_exists('extra_'.$field_details[1], $extra_data)) {
-
- $selected_values = explode(';', $extra_data['extra_'.$field_details[1]]);
- $extra_data['extra_'.$field_details[1]] = array();
-
- foreach ($selected_values as $key => $selected_value) {
- if (array_key_exists($selected_value, $values[0])) {
- $extra_data['extra_'.$field_details[1]]['extra_'.$field_details[1]] = $selected_value;
- } else {
- $extra_data['extra_'.$field_details[1]]['extra_'.$field_details[1].'*'] = $selected_value;
- }
- }
- }
- break;
- case self::USER_FIELD_TYPE_DIVIDER:
- $form->addElement('static', $field_details[1], '<br /><strong>'.$field_details[3].'</strong>');
- break;
- case self::USER_FIELD_TYPE_TAG:
-
- $user_tags = UserManager::get_user_tags($user_id, $field_details[0]);
- $tag_list = '';
- if (is_array($user_tags) && count($user_tags) > 0) {
- foreach ($user_tags as $tag) {
- $tag_list .= '<option value="'.$tag['tag'].'" class="selected">'.$tag['tag'].'</option>';
- }
- }
- $multi_select = '<select id="extra_'.$field_details[1].'" name="extra_'.$field_details[1].'">
- '.$tag_list.'
- </select>';
- $form->addElement('label', $field_details[3], $multi_select);
- $url = api_get_path(WEB_AJAX_PATH).'user_manager.ajax.php';
- $complete_text = get_lang('StartToType');
-
- $jquery_ready_content = <<<EOF
- $("#extra_$field_details[1]").fcbkcomplete({
- json_url: "$url?a=search_tags&field_id=$field_details[0]",
- cache: false,
- filter_case: true,
- filter_hide: true,
- complete_text:"$complete_text",
- firstselected: true,
- //onremove: "testme",
- //onselect: "testme",
- filter_selected: true,
- newel: true
- });
- EOF;
- break;
- case self::USER_FIELD_TYPE_TIMEZONE:
- $form->addElement('select', 'extra_'.$field_details[1], $field_details[3], api_get_timezones(), '');
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- break;
- case self::USER_FIELD_TYPE_SOCIAL_PROFILE:
-
- $icon_path = UserManager::get_favicon_from_url($extra_data['extra_'.$field_details[1]], $field_details[4]);
-
- $leftpad = '1.7';
- $top = '0.4';
- $domain = parse_url($icon_path, PHP_URL_HOST);
- if ($domain == 'www.hi5.com' or $domain == 'hi5.com') {
- $leftpad = '3';
- $top = '0';
- }
-
- $form->addElement(
- 'text',
- 'extra_'.$field_details[1],
- $field_details[3],
- array(
- 'size' => 60,
- 'style' => 'background-image: url(\''.$icon_path.'\'); background-repeat: no-repeat; background-position: 0.4em '.$top.'em; padding-left: '.$leftpad.'em; '
- )
- );
- $form->applyFilter('extra_'.$field_details[1], 'stripslashes');
- $form->applyFilter('extra_'.$field_details[1], 'trim');
- if ($field_details[7] == 0)
- $form->freeze('extra_'.$field_details[1]);
- break;
- }
- }
- $return = array();
- $return['jquery_ready_content'] = $jquery_ready_content;
- return $return;
- }
-
- static function get_user_field_types()
- {
- $types = array();
- $types[self::USER_FIELD_TYPE_TEXT] = get_lang('FieldTypeText');
- $types[self::USER_FIELD_TYPE_TEXTAREA] = get_lang('FieldTypeTextarea');
- $types[self::USER_FIELD_TYPE_RADIO] = get_lang('FieldTypeRadio');
- $types[self::USER_FIELD_TYPE_SELECT] = get_lang('FieldTypeSelect');
- $types[self::USER_FIELD_TYPE_SELECT_MULTIPLE] = get_lang('FieldTypeSelectMultiple');
- $types[self::USER_FIELD_TYPE_DATE] = get_lang('FieldTypeDate');
- $types[self::USER_FIELD_TYPE_DATETIME] = get_lang('FieldTypeDatetime');
- $types[self::USER_FIELD_TYPE_DOUBLE_SELECT] = get_lang('FieldTypeDoubleSelect');
- $types[self::USER_FIELD_TYPE_DIVIDER] = get_lang('FieldTypeDivider');
- $types[self::USER_FIELD_TYPE_TAG] = get_lang('FieldTypeTag');
- $types[self::USER_FIELD_TYPE_TIMEZONE] = get_lang('FieldTypeTimezone');
- $types[self::USER_FIELD_TYPE_SOCIAL_PROFILE] = get_lang('FieldTypeSocialProfile');
- return $types;
- }
-
- static function add_user_as_admin($user_id)
- {
- $table_admin = Database :: get_main_table(TABLE_MAIN_ADMIN);
- $user_id = intval($user_id);
- if (!self::is_admin($user_id)) {
- $sql = "INSERT INTO $table_admin SET user_id = '".$user_id."'";
- Database::query($sql);
- }
- }
-
- public static function remove_user_admin($user_id)
- {
- $table_admin = Database :: get_main_table(TABLE_MAIN_ADMIN);
- $user_id = intval($user_id);
- if (self::is_admin($user_id)) {
- $sql = "DELETE FROM $table_admin WHERE user_id = '".$user_id."'";
- Database::query($sql);
- }
- }
-
- public static function update_all_user_languages($from, $to)
- {
- $table_user = Database::get_main_table(TABLE_MAIN_USER);
- $from = Database::escape_string($from);
- $to = Database::escape_string($to);
- if (!empty($to) && !empty($from)) {
- $sql = "UPDATE $table_user SET language = '$to'
- WHERE language = '$from'";
- Database::query($sql);
- }
- }
- }
|